ZachXBT Says Humanity Protocol’s $32 Million Crypto Hack Looks Staged — Here’s The Evidence He Found
Humanity Protocol, a biometric blockchain identification challenge that had been considered one of crypto’s top-performing tokens of 2026, suffered a catastrophic security incident on June 9 wherein attackers drained roughly $32 million from greater than 17 wallets — sending the H token crashing 90% inside hours — earlier than on-chain investigator ZachXBT publicly questioned whether or not the incident was a real exterior hack or a staged exit by the challenge’s personal insiders.
The assault unfolded in two phases. In the primary, attackers minted 100 million H tokens and drained related wallets, changing roughly $23.7 million into ETH throughout a number of addresses whereas leaving roughly $7.9 million in H tokens, per on-chain information flagged by Arkham Intelligence.
In the second section, the attacker prolonged the exploit to BNB Chain — taking up the H token’s proxy admin contract and minting a further 100 million H tokens price roughly $12.9 million to a contemporary pockets, per blockchain safety agency Blockaid’s on-chain monitoring of the incident.
Humanity Protocol acknowledged the breach in an official publish on X, confirming that personal keys belonging to a member of the Humanity Foundation had been compromised. The staff urged customers to keep away from interacting with the bridge or any liquidity swimming pools till additional discover, and acknowledged that official updates would come solely from the primary account or co-founder Terence Kwok’s private account, per the @Humanityprot publish — considered one of your offered sources.
ZachXBT’s Three-Post Takedown On The Crypto Hack
The incident may need handed as a standard non-public key compromise had ZachXBT not weighed in inside hours. In three posts on X the pseudonymous on-chain investigator systematically dismantled the staff’s narrative.
In his first publish, ZachXBT noted that the image was unclear — it may very well be a hack or a deliberate rug — however flagged that the H staff gave the impression to be working with an energetic market maker given the concentrated token provide, and that every one H tokens had been bought on DEXs relatively than centralized exchanges — an uncommon sample for an exterior attacker looking for liquidity.
In his second publish, he sharpened the evaluation: “The incident appears presumably staged. I’m not shopping for the staff’s story. It’s a handy means for the energetic MM to have exited.” In his third publish, he turned to the challenge’s broader credibility: “You select to crime pump your token for weeks with zero fundamentals and assume CT will blindly belief your story? Disclose your energetic MM agreements with the HK entity first.”
ZachXBT later walked again a few of his issues after further evaluation instructed the non-public key compromise and market-making points could also be unrelated — however the harm to the challenge’s credibility was already performed.
The Context That Made ZachXBT’s Suspicions Land
The timing of the incident carries its personal weight. The H token had surged roughly 875% above its 2026 low earlier than the crash, per BanklessTimes — making it one of many 12 months’s most excessive performers in a sector not wanting excessive performers. A token unlock is scheduled for June 25 — two weeks away — a timeline that might make a staged exit earlier than unlock a financially rational, if legal, choice.
Three of the challenge’s 4 co-founders have documented histories involving lawsuits, monetary fraud allegations, and administration failures. Reports citing inside conversations instructed solely roughly a million of the challenge’s 9 million registered identities had accomplished biometric verification — the core metric on which Humanity’s total worth proposition rests.
This growth marks a vital and deeply acquainted second for the nascent sector. A 90% token crash tied to a personal key compromise that crypto’s most revered on-chain investigator publicly questions as staged — arriving weeks earlier than a significant token unlock, involving a challenge whose management carries documented crimson flags — is exactly the sample that has outlined the sector’s most damaging fraud circumstances.
Whether ZachXBT’s suspicions finally show right will rely on on-chain proof nonetheless being gathered. What is already clear is that $32 million is gone and the group that trusted Humanity Protocol’s identification narrative is left with nothing however questions.
Cover picture from Grok, ETHUSD chart from Tradingview
