SecondFi Hack Puts Up to 129M ADA at Risk: What It Means for Cardano

SecondFi Hack Puts Up to 129M ADA at Risk: What It Means for Cardano

SecondFi, the EMURGO-backed Cardano wallet platform, disclosed a critical security flaw in its native web wallet-generation software on June 23, 2026 – and the damage estimates are still climbing.

ADA is trading at approximately $0.15 at press time, down nearly 3% in 24 hours, compounding losses after the token fell below $0.20 in June and sits near multi-year lows.

The central question this incident raises is whether the SecondFi crypto hack is contained at the application layer or whether the reputational fallout from a flagship Cardano wallet bleeds into a prolonged suppression of the ADA price?

What Broke And Why It's Worse Than a Typical Exploit

Most crypto security incidents trace to smart contract bugs or front-end phishing. The SecondFi breach is neither. The vulnerability sits inside the platform's native Cardano web wallet-generation software – the system that creates wallets and derives the private keys that control funds.

Think of it like a locksmith whose key-cutting machine was secretly producing duplicate keys. Every lock made through that machine is compromised, regardless of how securely the customer stored their copy.

Blink Labs, a Cardano infrastructure firm, warned publicly that any wallet generated through the affected flow should be treated as unsafe and advised users to migrate to a different wallet immediately.

SecondFi said it has isolated the root cause. "We have isolated the root cause of the recent security incident. The issue was confined to our native Cardano web wallet generation software," the project team said in its security update.

The platform paused all front-end activity, entered maintenance mode, and commissioned an independent technical review with a blockchain security firm.

SecondFi's preliminary on-chain analysis puts the total affected at approximately 16 million ADA. That figure, at current prices, represents roughly $2.4M, serious, but arguably containable for a platform backed by EMURGO, the commercial arm of the Cardano ecosystem.

SlowMist, the blockchain security firm, tells a different story. Yu Xian (known publicly as Cos), founder of SlowMist, tracked two Cardano addresses he identified as suspected attacker wallets and said the picture is significantly larger.

"The users of this wallet have likely lost over $20M," Cos said, noting the possible loss may involve more than 129 million ADA and other tokens.

He said on-chain transaction patterns suggested the attacker obtained a batch of mnemonic phrases or private keys and moved funds over many hours, draining larger wallets first before working down to smaller ones.

ORACLEˆ

A Powerful AI Strategy & Indicator

ORACLE^ Circles and Trend Line

Clear and concise chart visuals, the only indicator you will ever need!

Ready to Use

Configured out of the box for practically any market, cryptocurrency or securities. Leveraging the power of Tradingview.com

Trade with confidence

Use the ORACLE^ Circles and Trend Line to make easy data backed trading decisions

We built one of the smartest in class Indicators that is a powerful trading tool to help magnify your investment gains in practically any market.

With the ORACLE^ Circles that light up red or green, you won't have to worry about indecisive short or long trade entries. The ORACLE^ Trend Line provides further confidence on market direction giving you a higher chance of executing a profitable trade, everytime.

DISCOVER