Hinkal Privacy Protocol Hacked: $797,000 USDC Stolen and Converted

Hinkal Privacy Protocol Hacked: $797,000 USDC Stolen and Converted

First seen 4 Jul 2026, 15:24 UTC apps.apple.comcoinmarketcap.comwww.cryptowisser.comKucoinWeex+4 92% similarity 65.2

Article Content

Browse articles
ThreatCluster

On July 4, 2026, the decentralized privacy protocol Hinkal reported a security incident where an attacker exploited a vulnerability to extract approximately 797,000 USDC from its Ethereum contract. The stolen funds were converted into 454 ETH, with around 410 ETH transferred to Tornado Cash and approximately 44.67 ETH cross-chain transferred to Bitcoin via THORChain. Hinkal confirmed that the attack was limited to its Ethereum liquidity pools, and no other on-chain contracts were affected. All contracts have been temporarily suspended for repairs and security verification. The protocol has committed to fully compensating affected users at a 1:1 ratio, with further details on the compensation process to be announced.

Key Points: • Hinkal lost approximately 797,000 USDC due to a security breach. • The attacker converted the stolen funds into 454 ETH, with significant amounts transferred to Tornado Cash. • Hinkal is temporarily suspending all contracts and will fully reimburse affected users.

ThreatCluster AI

Timeline

2026-07-04
Hinkal reports security incident
Hinkal confirmed that an attacker exploited a vulnerability to steal approximately 797,000 USDC from its Ethereum contract.
Weex
2026-07-04
Stolen funds converted to ETH
The stolen USDC was converted into approximately 454 ETH, with significant transfers to Tornado Cash and Bitcoin via THORChain.
Kucoin
2026-07-04
Hinkal suspends contracts
All of Hinkal's smart contracts have been temporarily suspended for security verification and remediation following the attack.
Odaily.News
2026-07-04
Compensation promise made
Hinkal announced that all affected users will be fully compensated at a 1:1 ratio, with details to follow.
Kucoin

Community

Browse all →