A compromised admin key let an attacker mint 1,000 unbacked eBTC on Monad before Echo Protocol regained control and burnt the remaining 955 tokens. The nominal exposure was $76.7 million; the realised loss, laundered through Tornado Cash, came to about $821,700.
Echo Protocol lost control of an admin key on Monad on Tuesday, and the attacker who got it minted 1,000 unbacked eBTC — worth $76.7 million at the protocol's posted price — before laundering roughly $821,700 through Tornado Cash. The protocol regained the keys, burnt the 955 eBTC the attacker still held, and paused cross-chain functionality. The smart contracts were not the failure point. A single private key was.
Echo, a Bitcoin DeFi platform that issues synthetic BTC tokens across chains, confirmed the breach in a statement on Tuesday morning. "Our investigation indicates the issue originated from a compromised admin key affecting the Monad deployment," the team wrote. The attacker used the key to grant themselves DEFAULT_ADMIN_ROLE and MINTER_ROLE, revoke the original admin, and start minting eBTC against no underlying collateral.
The flow that followed is now a familiar pattern. The attacker deposited 45 of the freshly-minted eBTC — about $3.45 million notional — into Curvance, a cross-chain money market built on Monad. Against that collateral they borrowed 11.29 WBTC, worth roughly $867,700 in real assets the protocol actually held. They bridged the WBTC to Ethereum, swapped it for ether, and sent 384 ETH to Tornado Cash. By the time Echo's incident response kicked in, $821,700 of real value had moved beyond reach.
The nominal figure and the realised loss are off by two orders of magnitude. That gap is the story. Echo's eBTC is a synthetic — a contract-issued representation of bitcoin that holds peg only as long as the issuance pipeline is constrained by collateral. When an attacker can mint at will, the token's headline value becomes a fiction. The market priced 1,000 fake eBTC at $76.7 million, but the only thing the attacker could actually monetise was whatever real collateral other protocols would lend against it before someone noticed.
Curvance noticed quickly enough that the bleeding stopped at one set of borrowed positions. The remaining 955 eBTC sat in the attacker's wallet, unsold, because no liquidity venue on Monad could absorb that volume against real assets. Echo paused the bridge, regained admin control, and burnt the 955 eBTC outright. The Aptos deployment of Echo — which issues a separate token called aBTC — was untouched. Echo says current Aptos exposure to any Monad-bridged contagion is about $71,000.
That kind of containment is the upside of a permissioned admin model. It is also the proximate cause of the loss. A single private key holding DEFAULT_ADMIN_ROLE on a token contract is a control plane; whoever controls it can mint, revoke, and reassign roles. Echo's smart contracts performed exactly as written. The role that authorised the minting was held by one wallet, and that wallet was compromised. The protocol's auditor never had to fail. The keyholder did.
This is not the first time in recent weeks that a single-wallet admin role has cost a DeFi protocol its reserves. Wasabi Protocol lost $4.55 million at the end of April to the same architectural failure — one wallet, one role, one compromise. The 1inch liquidity provider drained for $6.7 million on May 13 was a variant: no admin compromise, but an allowlist function with no access control at all. The names change. The pattern doesn't.
The Tornado Cash leg of the laundering tells its own story. Years after the Netherlands jailed developer Alexey Pertsev, the mixer is still the destination of first resort for attackers who need to break the chain between exploit and exit. The OFAC sanctions designation has been vacated, the source code is unchanged, and the protocol operates as a public good and a private fence depending on who is using it that hour.
Onchain analysts at PeckShield were the first to flag the unusual eBTC mint, posting the transaction hash within twenty minutes of the first illegitimate token issuance. Echo's response — bridge pause, key rotation, burn — was complete within the next hour. The team has not yet detailed how the original key was compromised, citing an ongoing review with external security partners.
What is clear is the realised damage. $821,700 in ether through Tornado Cash. Eleven WBTC at Curvance now unbacked. A pause on Monad bridge operations until Echo can publish a post-mortem and rotate every key the original admin touched. The $76.7 million figure will dominate the headlines. The operational lesson is smaller and sharper: the single hot wallet holding all of your admin permissions is the single thing your attackers want most.
