Quantstamp: 141.18M H Token Exploit Shows Hallmarks of North Korea-Linked Activity

Humanity Protocol has published Quantstamp's findings on the June 8 security incident involving the H token. Quantstamp said the attackers used a phishing campaign to gain remote access to a director's device, copied wallet data and private keys, then upgraded the H token contract on Ethereum and moved about 141.18 million H tokens. The report added that on BNB Smart Chain, the attackers also seized control of a ProxyAdmin contract and minted additional H. Quantstamp noted that the tools used and certificate-signing patterns observed in the intrusion align with tactics commonly associated with DPRK-linked operations.