THORChain

THORChain Incident Update #5 The devs and security teams are working hard to bring the network safely back online. The focus is on getting this right, without rushing any steps. Security and stability remain the top priorities. Nodes have upgraded to v3.18.1, which contained a patch and restores @RujiraNetwork's ability to manage credit accounts (borrow / repay). ADR028 has been approved by the nodes. The next major step is cutting and testing v3.19.0. Additional changes are being made to the release and will be tested on stagenet before moving to mainnet. The target is to have it on stagenet by EOD tomorrow, though an exact timeline is yet to be confirmed. Once finalised and pushed for mainnet adoption, all node operators are asked to upgrade as quickly as possible so the network can come back online safely and efficiently. With ADR028 now approved, the bounty is active, meaning the hacker has an open window to return a portion of the funds. The protocol will also cover the remaining loss using POL. The figures are still being defined and will be shared in a follow-up announcement. One important note: tss-lib has temporarily been moved to closed source for the next few weeks to allow THORSec to complete a full security audit without exposing ongoing remediation work. The repository will be reopened once this is complete. More updates coming soon. We appreciate the patience and support.

Deving.zone @deving_zone on THORChain Podcast #204 x.com/i/broadcasts/1…

⚡We’re live! Severin from @deving_zone joins @KentonC137 and @patriotsounds on the THORChain Podcast | Ecosystem & Community Spotlight. Jump on stage and ask your questions live: riverside.com/studio/thorcha… Also streaming on YouTube: @THORChainCommunity" target="_blank" rel="nofollow noopener">youtube.com/@THORChainComm…

⚡ This Saturday on the THORChain Podcast | Ecosystem & Community Spotlight at 10AM EDT / 2PM UTC. Severin from @deving_zone joins @KentonC137 and @patriotsounds. Deving Zone enables seamless swaps, liquidity, and markets with real assets, no wrappers, no IOUs, and no bridge risk. Just DeFi. See you there. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

Trading on @THORChain could resume in the coming weeks. Asaf from @sodabubblelabs says it wasn't an AI hack. The full restart timeline in this week's THORSday recap: 👇🏻 blog.thorchain.org/thorchain-path…

THORChain Protocol Update with @CBarraford | Podcast #203 x.com/i/broadcasts/1…

⚡We’re live! @KentonC137 and @patriotsounds on the THORChain Podcast | Protocol Update with Co-Founder @Cbarraford alongside @sodabubblelabs Jump on stage and ask your questions live: riverside.com/studio/thorcha… Also streaming on YouTube: @THORCommunity" target="_blank" rel="nofollow noopener">youtube.com/@THORCommunity

⚡ THORChain Podcast | Protocol Update with Co-Founder @CBarraford featuring @sodabubblelabs, part of THORSec, the team working on THORChain's security. Today at 2PM EDT / 6PM UTC. Hosted by @KentonC137 and @patriotsounds. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

⚡This Saturday on the THORChain Podcast | Ecosystem & Community Spotlight. Severin from @deving_zone joins @KentonC137 and @patriotsounds live at 10AM EDT / 2PM UTC. Deving Zone is building a DeFi ecosystem that seeks to eliminate the need for wraps and bridges. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

⚡ THORChain Podcast | Protocol Update with Co-Founder @CBarraford featuring @sodabubblelabs, part of THORSec, the team working on THORChain's security. This Thursday at 2PM EDT / 6PM UTC. Hosted by @KentonC137 and @patriotsounds. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

⚡Saturday 30th, on the THORChain Podcast | Ecosystem & Community Spotlight at 10AM EDT / 2PM UTC. @KentonC137 and @patriotsounds are sitting down with Severin from @deving_zone Deving Zone empowers businesses, startups, and developers with innovative digital solutions that drive real-world growth and technological advancement. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

@QuaiNetwork on THORChain Podcast #202 x.com/i/broadcasts/1…

⚡We’re live! @QuaiNetwork joins @KentonC137 and @patriotsounds on the THORChain Podcast | Ecosystem & Community Spotlight. Jump on stage and ask your questions live: riverside.com/studio/thorcha… Also streaming on YouTube: @THORChainCommunity" target="_blank" rel="nofollow noopener">youtube.com/@THORChainComm…

⚡ This Saturday on the THORChain Podcast | Ecosystem & Community Spotlight. @QuaiNetwork joins @KentonC137 and @patriotsounds live at 10AM EDT / 2PM UTC. Quai Network is building an energy-based monetary system where energy becomes money. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

THORChain Incident Update #4 Following the events of May 15th, the community has been hard at work defining a path forward. ADR028 is now published and a vote is open for Node Operators. 🔹 The Recovery Plan 🔹 The protocol will absorb the loss first through Protocol-Owned Liquidity and the remainder is spread across synth holders (The exact split between the two is still being evaluated). By doing so, POL will be reduced to zero. The ADR proposes to redirect a portion of system income to replenish it over time. No new RUNE is minted, no RUNE is sold, and no holder is diluted. 🔹 The Technical Decisions 🔹 GG20 is kept in place for now, patched and upgraded. Trading resumes only after the vulnerability is patched and a successful churn has occurred. A slower, more security-conscious release cadence is also called for going forward. 🔹 The Slashing 🔹 Innocent nodes that end up being in the same vault as the attacker are protected. The attacker's node is slashed in full. The recovered RUNE is paired with whatever assets can be recovered from the affected vault, and any surplus RUNE is burned. 🔹 The White Hat Offer 🔹 The attacker is offered a bounty to return the funds. If funds are returned partially, the recovery plan rolls back proportionally. 🔹 Protocol Neutrality 🔹 THORChain remains neutral and permissionless. The attacker's swaps will not be censored once trading resumes. Node Operators are now voting on the overall direction and principles of this proposal. The figures in the ADR are indicative at this stage and will be adjusted later, notably via Mimir. The goal is to restart the network as soon as possible. A yes vote is a green light for developers to continue building in that direction. Full details of ADR028 gitlab.com/-/snippets/599… For those who want to understand the full context of what happened, this article is for you: thorchain.org/blog/thorchain…

⚡Saturday 23rd, on the THORChain Podcast | Ecosystem & Community Spotlight at 10AM EDT / 2PM UTC. @KentonC137 and @patriotsounds are sitting down with @QuaiNetwork . Quai Network is building the world's first energy-based monetary system, combining scalable Proof-of-Work infrastructure with decentralised energy markets where energy becomes money. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

THORChain Protocol Update with @CBarraford | Podcast #201 x.com/i/broadcasts/1…

⚡We’re live! @KentonC137 and @patriotsounds on the THORChain Podcast | Protocol Update with Co-Founder @Cbarraford . Jump on stage and ask your questions live: riverside.com/studio/thorcha… Also streaming on YouTube: @THORChainCommunity" target="_blank" rel="nofollow noopener">youtube.com/@THORChainComm…

⚡THORChain Podcast | Protocol Update with Co-Founder @Cbarraford is today at 2PM EDT / 6PM UTC. Hosted by @KentonC137 and @patriotsounds. Jump on stage and ask your questions live: riverside.com/studio/thorcha…

THORChain Exploit Report #1 is now live. Full timeline of the May 15 incident, how the security layers responded, and what comes next via ADR-028. thorchain.org/blog/thorchain…