Hinkal Protocol Suffers $820K USDC Loss Due to Smart Contract Bug
A recent exploit in the Hinkal stablecoin privacy protocol resulted in a significant loss of $820,000 worth of USDC.
The suspected flaw was caused by a bug in one of its smart contracts, allowing an attacker to manipulate the prooflessDeposit() function and make repeated transact() calls to withdraw funds.
This incident highlights the enduring threat of implementation bugs in decentralized finance (DeFi), which can lead to substantial financial losses despite advancements in the space.
In 2026, there have been a number of notable exploits, including the $7.5 million loss from the Jaredfromsubway.eth Maximal Extractable Value (MEV) bot and an approximately $403,000 exploit for Edel Finance.




