Crypto Times Logo Black
Google News Follow Banner
  • News
    • Market
    • Bitcoin
    • Ethereum
    • Altcoins
    • Regulations & Policies
    • DeFi News
    • Blockchain News
    • Industry
  • Exclusive
    ExclusiveShow More
    Michael Saylor’s Strategy
    Why Michael Saylor’s Strategy Is Selling Bitcoin After Years of Buying
    Anthropic’s Claude Fable 5 Crypto Hacks
    Anthropic’s Claude Fable 5: The AI That Could Supercharge Crypto Hacks and Defenses
    CLARITY Act Stalls Why Senate's August Recess Puts US Crypto Rules at Risk
    CLARITY Act Stalls: Why Senate’s August Recess Puts US Crypto Rules at Risk
    Three Stories, One Pattern Why Binance Is Having Its Worst Week Since the Pardon
    Three Stories, One Pattern: Why Binance Is Having Its Worst Week Since the Pardon
    Coinbase India Head Addresses Re-Entry Launch Glitches and the 12-Month Roadmap
    Coinbase India Head Addresses Re-Entry Launch Glitches and the 12-Month Roadmap
  • Opinion
    OpinionShow More
    The Bitcoin Treasury Blueprint What Stress Testing on Strategy Inc.’s MSTR-STRC Reveals
    The Bitcoin Treasury Blueprint: What Stress Testing on Strategy Inc.’s MSTR-STRC Reveals
    Why Wall Street is Divided Michael Saylor’s Scarcity vs. Tom Lee’s Staking Empire
    Why Wall Street is Divided: Michael Saylor’s Scarcity vs. Tom Lee’s Staking Empire
    The Arthur Hayes Paradox Macro Prophet or Market Opportunist
    The Arthur Hayes Paradox: Macro Prophet or Market Opportunist?
    RBI Denies Gold Sale Amid Oil Crisis: Could It Speed Up India's Digital Rupee Push?
    RBI Denies Gold Sale Amid Oil Crisis: Could It Speed Up India’s Digital Rupee Push?
    The CLARITY Act War Starts Jamie Dimon Vs Armstrong
    The CLARITY Act War Starts: Jamie Dimon Vs Armstrong
  • Learn
    • Explained
    • How To
    • Insights
  • Videos
  • More
    • About Us
    • Our Authors
    • Contact Us
    • Editorial Policy
The Crypto TimesThe Crypto Times
  • All News
  • Market
  • Bitcoin
  • Ethereum
  • Altcoins
  • Regulations & Policies
  • Blockchain
  • DeFi
  • Industry
  • Exclusive
  • Opinion
Search
  • News
    • Market
    • Bitcoin
    • Ethereum
    • Altcoins
    • Regulations & Policies
    • Blockchain
    • DeFi
    • Industry
    • Exclusive
    • Opinion
  • Learn
    • Explained
    • How To
    • Insights
  • Quick Links
    • About Us
    • Our Authors
    • Contact Us
    • Editorial Policy
    • AI Policy
    • Sponsored & Advertorial Policy
  • Videos
  • Glossary
Follow US
© 2026 By Crypto Times. All Rights Reserved.
DeFi News

Hackers Exploit USPD Stablecoin via Proxy Deployment Vulnerability

The attack exploited USPD.io’s proxy deployment, using a shadow implementation to mint 98M USPD and drain 232 stETH.

Written By Dishita Malvania
Published 2025-12-05·Updated 7 months ago
Make The Crypto Times preferred on GoogleGoogle
Share
Hackers Exploit USPD Stablecoin via Proxy Deployment Vulnerability

Key Highlights

  • USPD.io’s stablecoin suffered a critical exploit on September 16, with attackers minting 98M tokens and draining 232 stETH.
  • The attack targeted the proxy deployment process using CPIMP and shadow implementations, bypassing audits and detection.
  • USPD.io is working with authorities, flagged attacker addresses, and offered a whitehat rescue, promising a full post-mortem soon.

USPD.io, a stablecoin pegged to the US dollar, has confirmed a critical exploit in its protocol that allowed attackers to mint tokens without authorization and drain millions in liquidity. The team immediately warned users not to buy USPD and to revoke all approvals.

USPD.io emphasized that the exploit was not caused by any flaw in the smart contract itself but was the result of a sophisticated attack that targeted the deployment process. It confirmed that its protocol had undergone audits by top security firms Nethermind and Resonance, and its smart contract code is fully unit-tested.

Details of the attack

The breach took place on September 16 during the deployment of USPD’s proxy system. USPD.io said the attackers used a method called CPIMP (Clandestine Proxy In the Middle of Proxy). They executed a ‘Multicall3’ transaction to gain administrative rights before the deployment script had finished.

3/ Instead, we were targeted by the highly sophisticated "CPIMP" (Clandestine Proxy In the Middle of Proxy) attack vector.

On Sept 16, during deployment, an attacker front-ran our proxy initialization via a `Multicall3` transaction, silently seizing admin rights before our…

— USPD.IO | The Dollar of the Decentralized Nation (@USPD_io) December 4, 2025

Once they had control, the attackers set up a “shadow” implementation. This hidden version forwarded calls to the legitimate, audited contract while altering storage slots and event data. 

Because of this, blockchain explorers such as Etherscan showed the verified contract as normal, hiding the attackers’ control. Using this hidden access, they upgraded the proxy, minted roughly 98 million USPD tokens, and drained around 232 stETH from the protocol.

Crypto analyst Emmett was among the first to flag the exploit publicly, noting that the attacker initially deposited around 3,122 ETH as collateral, exploited a vulnerability to mint roughly 10x more tokens in a single transaction, creating about 98 million USPD, and then withdrew around 237 stETH before dumping the newly minted USPD on Curve for roughly $300,000 worth of USDC.

Response from USPD.io

USPD.io said it is working closely with law enforcement and whitehat security groups to recover the stolen funds. The attacker’s addresses have been flagged with major centralized and decentralized exchanges to prevent further movement. 

The addresses involved are 0x7C97313f349608f59A07C23b18Ce523A33219d83 and 0x083379BDAC3E138cb0C7210e0282fbC466A3215A.

The team also offered the attacker a chance to return the funds. USPD.io said that if 90% of the stolen assets are returned, all law enforcement action would be halted. Attackers can keep 10% of stolen funds as a bug bounty. The team described this as a potential whitehat rescue.

In a statement, USPD.io said: “We are devastated that despite rigorous audits and adherence to best practices, we fell victim to this emerging and highly complex attack vector. We are doing everything in our power to recover assets.”

A full technical post-mortem is expected to be released soon to explain how the exploit happened and what measures will prevent future attacks.

Implications

The exploit demonstrates just how sophisticated attacks in the crypto space have become. According to USPD.io, the attackers focused on the deployment process rather than the smart contract itself, using proxy manipulation and shadow implementations to remain undetected.

The incident also underscores the value of transparency and fast action. By openly communicating what happened and working with authorities, USPD.io is showing how teams can respond effectively to major security breaches in decentralized finance.

Also Read: Yearn Finance Recovers $2.4M After $9M yETH Exploit Shakes DeFi

Disclaimer: The information researched and reported by The Crypto Times is for informational purposes only and is not a substitute for professional financial advice. Investing in crypto assets involves significant risk due to market volatility. Always Do Your Own Research (DYOR) and consult with a qualified Financial Advisor before making any investment decisions.

Follow The Crypto Times on Google News to Stay Updated!      Google News

TAGGED:Crypto HackStablecoin
Share This Article
Whatsapp Whatsapp LinkedIn Telegram Copy Link

Latest News

White House Defends SEC Picks Ahead of CLARITY Act Debate
White House Defends SEC Picks Ahead of CLARITY Act Debate
Aave Launches Stable Vaults for Fixed-Yield Stablecoin Apps
Aave Launches Stable Vaults for Fixed-Yield Stablecoin Apps 
Bitwise 10 Crypto Index ETF (BITW) Adds HYPE, Removes DOT and AVAX
Bitwise 10 Crypto Index ETF (BITW) Adds HYPE, Removes DOT and AVAX
Kresus Launches Crypto Inheritance Tool for Self-Custody Wallets
Kresus Launches Crypto Inheritance Tool for Self-Custody Wallets
Sen. Lummis Rebuts Warren, Defends CLARITY Act on Crypto Sanctions
Sen. Lummis Rebuts Warren, Defends CLARITY Act on Crypto Sanctions

Find Us on Socials

You may also like

PayPal USD Launches Natively on Polygon for Global Payments

PayPal USD Launches Natively on Polygon for Global Payments

Robinhood Chain Active Addresses Hit Record High Amid Meme Coin Frenzy

Robinhood Chain Active Addresses Hit Record High Amid Meme Coin Frenzy

Hyundai Card Completes Stablecoin Cross-Border Transfer Test

Hyundai Card Completes Stablecoin Cross-Border Transfer Test

Why Stablecoins Kept Working When Venezuela's Banking System Didn't

Why Stablecoins Kept Working When Venezuela’s Banking System Didn’t

The Crypto Times Logo PNG

Providing real-time, accurate Crypto reporting. Your trusted source for Crypto News and Research.

Stay Updated

All News
Exclusive
Opinions
Learn
Videos
Glossary

Company

About Us
Our Authors
Editorial Policy
AI Policy
Advertorial Policy

Get In Touch

Contact Us
Career

Find Us on Socials

X-twitter Linkedin Telegram Youtube Instagram

© 2026 The Crypto Times | A BITROCK TECHNOLOGIES L.L.C. Company.

DMCA.com Protection Status
  • Terms and Conditions
  • Disclaimer
  • Privacy Policy
  • Cookie policy
Do Not Sell or Share My Personal Information