Truebit TRU token plunges 99.9% after $26.6 million exploit drains Ethereum reserves

Truebit’s native token TRU crashed to near zero on Thursday after an exploit drained roughly 8,535 ether, about $26.6 million, from the protocol’s reserves, on-chain data and independent researchers show. The sell-off wiped out liquidity on decentralised exchanges and left holders unable to exit positions as prices evaporated.

Blockchain sleuths say the attacker exploited a flaw in an older Truebit smart contract – 0x764C64b2A09b09Acb100B80d8c505Aa6a0302EF2. They report the bug allowed the minting or acquisition of TRU at effectively no cost, which was then sold back into the protocol to syphon ether from its coffers. The move was executed in a single or a small number of transactions, according to transaction traces.

Truebit acknowledged the incident in a brief statement. The team said it was “aware of a security incident involving one or more malicious actors,” that it had contacted law enforcement, and that it was taking steps to contain the damage. The protocol warned users not to interact with the affected contract until further notice.

Chain analysts tracked the stolen funds through a sequence of wallet transfers. Some on-chain monitors allege the hacker routed ETH through mixers before pausing, a tactic commonly used to obscure the origin of funds. That pattern complicates recovery efforts and adds urgency to the law-enforcement trace.

Truebit TRU token plunges 99.9%

Market reaction was instant and brutal. The Truebit (TRU) token price plummeted to an all-time low. According to data from Nansen, the TRU price fell more than 99% to $0.0000000029 from about $0.16.

Traders reported failed orders and near-zero bid depth as the market tried to process the shock. The collapse quickly cascaded into social channels and investor forums, where holders and observers debated whether the event was a coordinated attack, careless code, or a long-standing governance oversight.

Security firms and auditors say the incident underlines persistent risks in DeFi. Many protocols still run legacy contracts that were not updated for present-day threat models. Analysts pointed out that late-stage auditing and automated monitoring can reduce risk, but they cannot remove it entirely. The Truebit breach joins a string of high-profile losses that remind the market of the trade-off between composability and systemic fragility.

For now, Truebit’s recovery options remain limited. Protocol teams typically pursue a mix of forensics, legal action, and negotiations with services where funds are moved. Some projects have offered bounties or emergency token swaps in past incidents, while others have failed to recover assets. Truebit’s message to users was cautious: co-operate with investigators and avoid interacting with the compromised contract.

The episode might attract scrutiny from investors and exchanges. Might also prompt fresh questions about how older smart contracts should be retired or wrapped safely. 

For holders of TRU, the immediate reality is stark. The token’s market price has effectively been erased. The investigation is ongoing, and the community now waits for a fuller technical post-mortem and any legal developments.

The post Truebit TRU token plunges 99.9% after $26.6 million exploit drains Ethereum reserves first appeared on Technext.