TrustedVolumes RFQ Proxy Drain
On Ethereum at 2026-05-07 00:47:35 UTC, the attacker exploited an authorization design flaw in TrustedVolumes’ custom RFQ flow to create a maker/signer relationship they controlled and then settle orders against a third-party resolver’s pre-approved balances. The loss in this transaction was approximately $5.87M, consisting of `1291.16110521587917927` WETH, `206282.446876` USDT, `16.93910519` […]
