StablR has suspended USDR and EURR operations due to excessive token issuance from an attack

According to CoinDesk, European stablecoin issuer StablR has suspended the minting and redemption of USDR and EURR due to a hacker attack, and has requested exchanges to stop trading and deposits/withdrawals of the two currencies. The attacker exploited a vulnerability in its Ethereum 1-of-3 multi-signature wallet with a low threshold, compromised a single private key, added themselves as an administrator, and removed the original signers, resulting in the over-issuance of approximately 8.35 million USDR and 4.5 million EURR, valued at approximately $13.5 million at the pegged price, with actual cashing out around $2.8 million.

The incident led to both stablecoins being under-collateralized, no longer meeting the MiCA requirement of a 1:1 full reserve. USDR briefly depegged but recovered to about $0.994, while EURR fell to about $0.548. StablR stated that it has initiated an investigation and will report to the Maltese regulators and relevant authorities.