Humanity says stolen tokens now top $36 million after employee laptop compromise

Humanity said on June 9 that losses from the attack it previously pegged at $31 million have grown, with more than $36 million worth of tokens on Ethereum and BNB Chain stolen and sold. According to the project, the breach began after an employee's laptop was compromised, exposing three of six owner keys for the Gnosis Safe that controls the Hyperlane bridge's ProxyAdmin. Using the stolen keys, the attacker transferred ownership of the ProxyAdmin to their own wallet, then pushed a malicious contract upgrade and drained about 141.2 million H tokens in a single transaction. On BNB Chain, three of five Safe owner keys were also compromised. The attacker repeated the takeover, deployed a malicious implementation with unlimited minting capability, and minted 200 million H tokens to their wallet in two batches. Humanity said it has suspended deposits and withdrawals across all affected crosschain platforms and is working with relevant parties to limit losses. The team is conducting an internal investigation and said it is coordinating with law enforcement to pursue the attacker and recover a portion of the funds.