StablR Stablecoins Depeg After $13.5M Minting Exploit

An attacker gained administrative control of StablR's minting multisig late Saturday night ET, minted roughly 8.35 million USDR and 4.5 million EURR-about $13.5 million in face value-and sold large amounts on decentralized exchanges, pushing both stablecoins off their pegs.

Onchain activity showed freshly minted tokens entering decentralized exchange liquidity pools. An onchain investigator flagged the transfers and traced funding for the attacker's wallet to Circle's Cross-Chain Transfer Protocol on the Noble network. A blockchain security analysis attributed the breach to a compromised private key for one signer on a 1-of-3 multisig that controlled minting privileges. The attacker added themselves as an administrator, replaced owners and used those rights to mint tokens.

Security analysis found about $10.4 million in minted tokens were swapped for ETH across thin liquidity pools, with initial net proceeds estimated near $2.8 million after slippage. As the incident continued, consolidation of proceeds increased realized returns; a wallet later tagged as a consolidator held about 1,488 ETH, roughly $3.15 million, by Sunday morning ET. Onchain intervention temporarily froze a six-figure sum from the exploiter's funds.

The attacker also used administrative powers to blacklist and burn tokens held by other wallets. Records show about 2.7 million EURR, valued at roughly $2.4 million at the time, was burned from a wallet that had been processing routine redemptions.

Market prices moved sharply. EURR traded near $0.85 on Sunday morning ET, about 26% below its euro-equivalent peg, while USDR fell to roughly $0.64, down about 36% for the day. Large, sudden sales into limited liquidity contributed to the price moves.

StablR acknowledged the exploit in a message on X at 8:10 AM ET Sunday and said it was working to contain the issue and minimize impact. The onchain investigator who raised early alarms reported helping to freeze funds and wrote that StablR's team appeared ‘asleep' while the attack was active for several hours.

StablR is a European issuer holding an Electronic Money Institution license from Malta and uses Tether's Hadron tokenization platform. The company received a strategic equity investment from Tether in December 2024 and another from Kraken in July 2025. StablR reported that EURR and USDR recorded more than €3 billion in transaction volume in the first half of 2025 and were listed on over 50 exchanges with more than 150 trading pairs.

The incident follows several 2026 exploits in which privileged-access and key-management failures, rather than smart contract bugs, were the primary vectors. Some of those prior attacks also routed proceeds through cross-chain transfer protocols. Separately, euro-denominated stablecoins remain under regulatory scrutiny in Europe; policymakers have recently discussed liquidity standards and possible backstops for euro stablecoin issuers.

StablR said it will share verified details and next steps as soon as possible. This is a developing story.