HYPE Breakout Creator Economy SEC Regulation Bitcoin Reserve OpenAI Lawsuit

Token of Power exploited, roughly $1.5M stolen: Here’s what is known

Token of Power exploited, roughly USD 1.5M stolen: Here's what is known

SHARE THIS ARTICLE

Written by

Radhika Parashar

Reviewed by

Raghav Chopra

Updated 13:24 EDT

Jun. 9, 2026

An exploit incident on Tuesday, targeting the DeFi project Token of Power ($TOP), has resulted in the loss of over $1.5 million. The TOP token is an Ethereum-based ERC-20 asset managed by a Decentralized Autonomous Organization (DAO) called “The Mask of Power”. It was built around the collective ownership of a specific MetaMask NFT with its native token being put to use to generate liquidity.

A number of on-chain intelligence firms including Blockaid, PeckShield, and Cyvers flagged the exploit on X. While Blockaid described the incident as a “governance-takeover attack”, Cyvers noted that the funds were drained from the TOP/WETH Balancer V1 Pool.

The Balancer V1 liquidity pool can be explained as an automated trading vault that held a 50-50 mix of $TOP tokens and Wrapped Ethereum (WETH), a tradeable version of the standard ETH token.

On-chain intelligence firms say that to execute the attack, the attacker minted billions of new, worthless TOP tokens into the vault and seapped them for the real tokens inside.

A total of 944.2 WETH worth $1.58 million have been drained from the vault — leaving investors with worthless tokens.

Root cause: Aragon DAO misconfiguration on TOP.
TOP MiniMeToken had a total supply of only 16,384 TOP. The attacker held 8,192.000001 TOP (>50%), and the Aragon Voting app allowed create → vote → execute in a single tx with no timelock. The vote called https://t.co/mpbKl1ub9p…— Blockaid (@blockaid_) June 9, 2026

PeckShield data showed the attacker has deposited the stolen tokens into the Tornado Cash crypto mixer to break the trace to the stolen tokens.

#PeckShieldAlert Token of Power ($TOP) has been exploited for $1.58M

The attacker deposited 945.1 $ETH into #TornadoCash. pic.twitter.com/hvPCqY7HBD— PeckShieldAlert (@PeckShieldAlert) June 9, 2026

🚨ALERT🚨Our system has detected a suspicious transaction involving Token of Power ($TOP), resulting in losses of approximately $1.58 million.

An address funded through @TornadoCash executed a malicious transaction that drained funds from the TOP/WETH Balancer V1 Pool.

The… pic.twitter.com/ewpQTmDA8s— 🚨 Cyvers Alerts 🚨 (@CyversAlerts) June 9, 2026

More details about the attack remains awaited for now.

The exploit comes a day after blockchain-based digital identity project Humanity Protocol was breached for $36 million in user funds via an employee’s laptop.

About The Coin Headlines

The Coin Headlines strives to bring trust into crypto media. At a time when every soundbite and headline can move the markets from red to green and vice-versa, The Coin Headlines promises to bring verified, credible and timely news and analysis from the world of crypto, blockchain, Web3, tech and markets. Founded in 2026, The Coin Headlines is based in the UAE with a team of experienced journalists and editors covering breaking news and updates from around the world.

From covering the biggest events to interviewing some of the most popular KOLs in the industry, The Coin Headlines keeps you informed of the latest trends and insights.

At The Coin Headlines our focus is clear: Real-time news updates, market movements, whale transfers, macroeconomic trends, tech and AI and geopolitical breaking news. The news we report goes through a strict editorial audit before its published to ensure the readers only get verified and credible information. We realize the world of crypto is dynamic, volatile, and many times, confusing. At The Coin Headlines we break down these complex issues into simple articles which cater to not just the experienced trader but also the student and first-time investor who wants to understand the space before committing to it.

Related Articles