Trusted Volumes exploit wallet returns 1,122 ETH, keeps about $2M in apparent bounty

AI Market Summary
A wallet linked to the Trusted Volumes exploit returned 1,122 ETH to protocol inventory while apparently retaining roughly $2M as an informal bounty, partially reversing a ~$5.9M drain tied to an RFQ swap proxy signature-check bypass. The recovery reduces immediate loss severity, but the negotiated outcome highlights ongoing DeFi code and enforcement fragility, which can weigh on protocol-specific confidence despite onchain restitution.
Impact level
● Low
Affected assets
ETH/USDT-0.01%
AI Insight · ETH/USDTAI Insight
● Neutral
Trade now
⚠️ AI-generated insights are based on news content and are provided for informational purposes only. They do not constitute investment advice or represent the views of BingX. Investing involves risk. Please trade responsibly.
The wallet linked to the Trusted Volumes exploit has sent 1,122 ETH back to the protocol, returning a meaningful portion of funds taken in the incident. On-chain records suggest the attacker returned roughly $2 million worth of ETH while keeping another sizeable amount in what appears to be a bounty-style settlement, a familiar outcome in DeFi disputes. The original attack, dated May 7, exploited a vulnerability in Trusted Volumes' RFQ swap proxy. Etherscan transaction data indicates the exploit drained about $5.9 million in assets by bypassing signature checks. Because swap proxies sit close to a protocol's execution flow, flaws in validation logic can enable unauthorized transfers that the system was never intended to permit. The latest repayment reduces losses for the protocol and its users, but it does not mean the protocol has been made whole. Partial recoveries can ease the immediate damage while leaving open questions about why the vulnerability existed, how quickly it was detected, and what changes have been implemented to prevent a repeat. The episode also highlights how DeFi incident resolutions often unfold. Rather than a clean legal process, outcomes frequently rely on public wallet attribution, on-chain tracking, and informal negotiation. Since transactions are transparent but not easily reversible, teams may opt to offer a settlement before funds are routed through bridges, exchanges, or mixers. Trusted Volumes now faces the harder task of restoring confidence: documenting what failed, how the exploit worked, what fixes were applied, and whether any user balances remain affected. The market can acknowledge the returned 1,122 ETH without treating the matter as closed. Reference: Etherscan TL;DR - The Trusted Volumes attacker returned 1,122 ETH to protocol inventory. - The exploit originally drained about $5.9 million via a smart contract vulnerability. - The attacker appears to have retained roughly $2 million under a bounty-style arrangement. This report is based on Etherscan wallet and transaction data. Written by the News Desk and edited by Samuel Rae.