THORChain resumes trading more than a month after $10M exploit
THORChain has restarted network operations after a month-long shutdown triggered by a $10.7 million exploit. Trading, signing, swaps, and liquidity provider actions are back online. The recovery included verifying most vaults with KeyVerify, retiring legacy vaults, and confirming every node’s keyshare. The exploit came from a flaw in THORChain’s GG20 threshold signature system, which was used to reconstruct a full private key through progressive key material leakage. THORChain says it patched the issue with an emergency fix on May 20, then released a major upgrade on June 9 and another stability update on June 11. With recovery mostly complete, THORChain plans new integrations, including native swaps and vaults for Zcash within two weeks, then Monero, and Bittensor support about six weeks after the restart.
