Humanity Project Discloses H Token Hack: 141M Tokens Drained, Signs Point to North Korean Threat Actors

BlockBeats reports that the Humanity team said in a statement released early June 14 that its H token was hit by a cross-chain attack on June 8. According to the team, the attacker used a targeted phishing campaign to compromise executive devices, steal private keys, and carry out on-chain transactions. The incident involved both Ethereum and BNB Chain. Using the stolen keys, the attacker upgraded the Ethereum contract and moved roughly 141.18 million H tokens. On BNB Chain, the attacker also seized control of the ProxyAdmin contract and minted additional tokens. The assets were then sold in batches over about eight hours on Uniswap and PancakeSwap, pressuring liquidity and impacting holders. The team said the entry point was a social-engineering email posing as a Bithumb-related update notice. Victims were tricked into opening a malicious attachment that installed a remote access trojan, ultimately giving the attacker full device control and access to wallet data and private keys. On the response front, the project said the Ethereum-side H contract has been frozen via an uncompromised multisig mechanism. The BNB Chain deployment remains under the attacker's control and can still mint new tokens. Humanity said it is working with exchanges and other parties on a recovery and remediation plan, and warned users to watch for fake links and phishing attempts.