TechFlow News: On May 15, according to an official announcement from THORChain, one of THORChain’s six Asgard vaults was compromised, with preliminary losses estimated at approximately $10.7 million. Upon automatically detecting anomalous activity, the network suspended signing operations, thereby preventing further outbound transactions. Users’ personal assets have been preliminarily confirmed as unaffected; losses are confined solely to the protocol’s own funds. Churn activities have been paused, and onboarding of new chains—as well as related operations—will be delayed until network stability is restored.
The node operator of the affected vault has had their staked RUNE slashed due to unauthorized outbound transactions. The THORChain team is actively investigating the root cause and has urged all node operators to immediately audit their infrastructure and key management systems. Additionally, platform users are advised to disable v1 router authorizations to safeguard their funds. Further updates will follow.
