TrustedVolumes Hit with $6 Million Exploit Linked to 1inch

TrustedVolumes, a prominent liquidity provider and market maker connected to the decentralized exchange aggregator 1inch, has been hit by an ongoing exploit that has drained nearly $6 million from its Ethereum resolver contract.

The attack, which was first detected by blockchain security firm Blockaid, is believed to have been carried out by the same operator linked to the earlier 1inch Fusion V1 exploit in March 2025. However, the latest case utilizes a different vulnerability tied to TrustedVolumes' custom RFQ swap proxy.

The stolen assets included a significant amount of wrapped Ether (WETH), USDT, WBTC, and USDC. The attack affected a TrustedVolumes-controlled custom RFQ swap proxy, rather than a standard user swap route.

Blockaid warned that the attacker used a public function to register as an AllowedOrderSigner, allowing them to execute orders that moved pre-authorized funds from the victim address. To mitigate potential losses, CertiK advised users to revoke approvals linked to the affected contract.

The incident adds pressure on DeFi market makers to review their approval systems and custom proxy risks, highlighting the ongoing challenges in securing decentralized financial protocols.