Resolv Labs announced that it would be restoring redemptions to pre-incident holders today, March 23, after suffering one of the largest DeFi exploits recorded this year a day earlier.
The protocol has also published a detailed account of the incident, stating that a compromised private key was what enabled the attacker to mint 80 million USR tokens.
A few hours after Resolv’s announcement, DeFi platform IoTeX, whose cross-chain bridge was exploited on February 21, announced that it has opened a live claims portal, offering 100% compensation to all affected users.
IoTeX users are directed to check their status and proceed to a payout page to claim their assets. So the bridge incident, one of four major hacks that occurred in February, per security firm Halborn, is now entering its settlement phase.
With Resolv’s incident adding to the tally, the first quarter of 2026 is shaping up to be a busy quarter for DeFi platforms in terms of attacks and exploits, having suffered a cumulative loss of over $137 million.
Resolv’s situation is more complex, as it is barely 48 hours since it happened, with the protocol still yet to release a full post-mortem.
Resolv stated that approximately 9 million of the tokens held by the attacker have since been burned. The protocol’s collateral pool currently holds approximately $141 million in assets, and only $0.5 million in redemptions were processed before the pause, limiting the direct financial drain.
Which protocols absorbed the Resolv fallout?
The Resolv breach affected a cluster of DeFi platforms that had accepted USR and related tokens as collateral, forcing them to declare their exposure and update their respective users on the safety of their funds.
Paul Frambot, co-founder and CEO of lending network Morpho, confirmed that approximately 15 of the network’s 500-plus vaults had non-negligible exposure to impacted markets.
“While affected vaults were specifically designed for higher-risk strategies with longer-tail collateral assets, every other vault without exposure, including lower-risk ‘prime vaults’, remained completely unaffected,” Frambot wrote.
He also praised curators Re7 Labs, Steakhouse Financial, and kpk, among others, for cross-supporting one another through the crisis.
Risk management firm Gauntlet stated that it is still discussing a resolution with Resolv and that it is working on a compensation plan for any remaining funds.
The platform stated on X, “Gauntlet USD Alpha has no exposure to USR nor RLP positions. Vaults on our platform are unaffected with no impact to capital suppliers.”
It also added that all deposits and caps have been reduced to zero for specific Morpho vaults.
Lending protocol Fluid announced that its team had secured short-term loans, backed by personal commitments from Lom Lomashuk of Cyber Fund, a contributor known as weremeow, and the Fluid core team itself, to cover 100% of bad debt currently in the protocol.
It added that the Resolv team confirmed that they will cover all USR positions that originated before the security incident and will also enable redemptions required to close those debt positions.
According to Fluid, multiple investors had expressed interest in purchasing its treasury tokens should further funds be required. It also reassured its users that its smart contracts are safe and operating as intended, writing on X, “All other markets continue to function normally, and protocol safeguards remain active. Users may see temporary rate volatility while positions are being unwound.”
Has AI made DeFi harder to secure?
The $137 million lost to DeFi exploits since January, as tallied by blockchain researcher CipherResearchx, places 2026 on a troubling trajectory. The figure covers 15 incidents, led by Step Finance ($27.3 million), Truebit ($26.2 million), Resolv (over $25 million), and SwapNet ($13.4 million).
For context, Q1 losses of over $1.64 billion and $336.3 million were recorded across the whole of crypto in 2025 and 2024, respectively, per Immunefi. However, DeFi losses in the first quarter of 2025 were around $106.8 million.
The 2026 DeFi-specific total, which is already higher than the exploits of Q1 2025, shows that exploits are accumulating at an increasing pace.
Also, there’s a new AI dimension to DeFi risk vectors.
In February, the lending protocol Moonwell lost $1.78 million as Security auditor Pashov stated that pull requests (PR) of the project show commits were co-authored by Claude Opus 4.6, making it what some observers described as the first significant DeFi exploit linked to vibe coding.
Source: https://www.cryptopolitan.com/iotex-resolv-move-on-exploits-2026-defi-loss/