chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

validator quorum compromiseDemo

May 3, 2022 · $583.9M · protocol

Narrative

On 2022-05-03, Keystone suffered a validator quorum compromise incident resulting in approximately $583,901,787 in losses. The exploit targeted the protocol layer. Attribution: dprk_lazarus. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
validator_quorum_compromise
Secondary causes
dvn_collapse
Attack layer
protocol
Strategy
tech_vuln
Actor role
intermediary
Attribution
dprk_lazarus
Attacker address
0x89738d0adc37f2a4cd713328e8db3fb32df9cbff
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0006DEMO:AADAPT.TA0008DEMO:AADAPT.T1110

Evidence

Disclosure date
May 7, 2022
Funds recovered
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/keystone/post-mortem-keystone-2022-05-03
  • https://rekt.news/keystone-rekt
  • https://blog.keystone.xyz/incident-report
tx hashes (1)
  • 0x921efb6f1e1b962bcfe2aff79e570e7dac3705160d95c8a78bb752548d6e4e52