Luis

Is anyone else reading this as bullish for onchain yields? Idle money would move back onchain to capture stablecoin yields vs sit on fintech platforms or CEXs where they earn nothing. The US doesn’t want us to earn passive yield on stablecoins—they want you to be poor.

Said it would happen. Now all custodial stablecoin issuers will no longer be able to offer yield. No more CEX based delta neutrals, off chain hedge fund vaults, no more “give us your capital and we passively earn for you” If it’s not DeFi, it’s not allowed. 🤝🎉🥳🍾

The previously disclosed exploit involving ~80M unbacked USR remains under active investigation. Until further notice, we strongly recommend avoiding trading or interacting with Resolv assets at this time to prevent supporting secondary market activity related to the exploit.

We are currently investigating a security incident involving unauthorized minting of USR. At this stage: The collateral pool remains fully intact. No underlying assets have been lost. The issue appears isolated to USR issuance mechanics. Our immediate priority is to: 1) Contain the incident 2) Assess impact 3) Ensure legitimate users are not affected We are actively investigating and will share more updates shortly.

The Resolv USR exploit wasn't a bug - it was a feature working exactly as designed. And that's the problem. How USR minting works: you deposit USDC, then an off-chain service with a privileged key decides how much USR to mint for you. The contract checks the minimum but has no maximum. No cap. No ratio to collateral. Whatever the key holder says - gets minted. You could deposit $1 and mint billions. This design was live since day one. It wasn't a code bug. The threat model was simply: "the key won't leak." It did. Attacker got the key. Deposited $200K across two txs, minted 80M unbacked USR. Dumped on DEXes, walked away with ~$23M in ETH. Single point of failure: one private key, no on-chain sanity checks. No max mint ratio, no multisig, no timelock. One compromised key = unlimited money printer. The contract worked perfectly. That's the scariest part.

The future of Defi is super easy "1-click" borrowing / lending against all kinds of tokenized assets. This is a multi-trillion dollar market. In tradfi it takes ±1 month to borrow against your different types of assets. In crypto, it takes ±1 second. Few. 🚀

"IF" the SEC decides that "private institutional chains" create an unfair advantage over the public markets, they could, and I think will, pull the plug on the interoperability that $CC Canton needs to survive.🤣