HomeEverything
Equities & FundsCrypto & Digital AssetsAI & TechnologyBusiness & CorporateUS Politics & PolicyGeopolitics & Global RiskMacro, Rates & FXCommodities & EnergyEuropean Politics & MarketsAsia-PacificReal Estate & Property
← All Stories

Gnosis Pay Compensates Users Fully After $1.5M Crypto Hack

Created at 3 Jul · 9:10 PM1 source↑ Market-relevant
IN SHORT

Gnosis Pay has fully compensated all users affected by a security breach on its card safe infrastructure that resulted in the loss of approximately $1.5 million in digital assets. The company absorbed the financial losses and has implemented enhanced security measures.

✉Newsletter

PiQ Daily

Pick your topics. Get only what matters, on your cadence.

Key Numbers

$1.5 milliondigital assets stolen
$300,000additional funds potentially unrecovered
5,281wallets impacted
2 hourstime to identify root cause
June 1, 2026date of security incident
June 6, 2026date 99% of users restored
October 30, 2023vulnerability introduced

Who's Involved

Gnosis Pay
Decentralized payment network that experienced a security breach
NOCA
Treasury manager running Gnosis Pay's monitoring systems
GNO, EURe, USDC.e
Main digital assets stolen in the attack

↳ Why This Matters

Gnosis Pay's full compensation of users following a significant crypto hack demonstrates a commitment to customer protection and could set a precedent for how decentralized finance platforms handle security incidents, potentially influencing user trust and regulatory scrutiny.

Key facts

  • Gnosis Pay experienced a security breach on its card safe infrastructure on June 1, 2026.
  • Approximately $1.5 million in digital assets was stolen by hackers.
  • Gnosis Pay has compensated all affected users and absorbed the financial losses.
  • The vulnerability was identified as being in Zodiac version 3.4.0, present since October 2023.
  • Full service restoration for 99% of users was achieved by June 6, 2026.

Gnosis Pay has detailed a security breach that occurred on June 1, 2026, impacting its card safe infrastructure and resulting in the theft of approximately $1.5 million in digital assets. The company confirmed that all affected users have been fully compensated, with Gnosis Pay absorbing the financial losses.

The post-mortem report revealed that unauthorized transfers were first detected by Gnosis Pay's monitoring systems at 06:17 UTC. The engineering team identified the technical flaw, which was present in Zodiac version 3.4.0 since October 30, 2023, within two hours. In response, Gnosis Pay immediately suspended card services and halted the bridge to Gnosis Chain, while also providing attacker wallet addresses to stablecoin issuers.

Restoration efforts were conducted in stages. By the night of June 3, the first impacted accounts were reactivated. Full access for 99% of users was restored by June 6, with the remaining accounts addressed shortly thereafter. The company leveraged its Delay Module and Roles Module within the card safe infrastructure to manage the recovery process. A total of 5,281 wallets were affected, with the stolen assets primarily comprising GNO, EURe, and USDC.e. An additional $300,000 remains unrecovered as efforts continue.

This incident adds to a series of smart contract exploits in the DeFi space, prompting broader security discussions and the proposal of front-running fixes for other blockchain networks like the XRP Ledger.

Frequently asked questions

Gnosis Pay experienced a security breach on its card safe infrastructure on June 1, 2026, leading to the theft of approximately $1.5 million in digital assets.

Yes, Gnosis Pay has fully compensated all affected users and absorbed the financial losses incurred from the hack.

The vulnerability was identified as being in Zodiac version 3.4.0, which had been present in the card safe infrastructure since October 30, 2023.

Gnosis Pay identified the root cause within two hours and restored full access for 99% of users by June 6, 2026.

What Happens Next

01Recovery efforts for the remaining $300,000 in stolen assets are ongoing.
02Gnosis Pay continues to implement enhanced security measures following the incident.

Get the newsletter.

Pick the topics you actually care about. We'll email when there's news worth your time, on the cadence you choose. Cancel any time from your account.

Cadence

How It Developed

Gnosis Pay experienced a security incident affecting card accounts on June 1, 2026.
Hackers stole approximately $1.5 million in digital assets, primarily GNO, EURe, and USDC.e.
Gnosis Pay's monitoring systems detected the unauthorized transfers at 06:17 UTC.
The engineering team identified the root cause within two hours of the initial warning.
Card services were immediately suspended, and the bridge to Gnosis Chain was halted.
Attacker wallet addresses were provided to stablecoin issuers.
Affected accounts were progressively restored, with 99% of users regaining full access by June 6.
Gnosis Pay announced that all affected users have been fully compensated, with the company covering the losses.

Sources

T1
Gnosis Pay Refunds 100% of User Funds Following $1.8M Crypto Attack, Here’s AllCoinGape

Related Stories

Belgian police arrest suspected phishing gang leader tied to $572K theft
3 Jul · 2:06 PM
Bitcoin Rises as Fed Rate Hike Fears Subside
3 Jul · 11:15 AM
Bitcoin whales bought $16.7B in two weeks as ETFs saw record outflows
3 Jul · 11:55 AM
Bitcoin Supply Held at a Loss Exceeds Profitable Supply for First Time This Cycle
3 Jul · 7:10 AM
Bitcoin ETFs See $221.7 Million Inflow, Ending 10-Day Outflow Streak
3 Jul · 6:05 AM