StablR’s EURR and USDR depegged after an attacker gained administrative control of the issuer’s minting multisig, minting roughly $13.5 million in unbacked tokens and dumping the proceeds on decentralized exchanges.

EURR fell about 23% to around $0.88 and USDR dropped roughly 30% to about $0.70, far from their peg levels in EUR/USD markets.

Minted tokens were swapped into shallow liquidity pools, yielding about 1,115 ETH valued at roughly $2.8 million due to thin liquidity on DEXs.

The incident highlights ongoing governance and key-management vulnerabilities in crypto stablecoins, feeding into regulatory debates around MiCA and euro-stablecoin policy.

StablR issued a security update acknowledging the exploit and signaling containment and further steps, though a detailed postmortem or recovery timeline was not provided.

Blockaid and other observers issued active community alerts about ongoing exploit activity on StablREuro and monitored addresses linked to the depegging.

StablR had received a strategic investment from Tether in late 2024, but how regulatory and financial ties will influence recovery remains undisclosed.

The May crypto landscape has seen over a dozen major exploits, underscoring risk from compromised private keys across DeFi and notable incidents like THORChain and Verus Bridge.

StablR’s position as a regulated stablecoin issuer with segregated reserves is challenged by this incident, underscoring risks tied to administrator credentials and internal controls.

Despite the depegging, the broader stablecoin market including USDT and USDC remained largely steady in the near term, while StablR’s tokens faced uncertainty about burns, recall, or reserve replenishment.

Holders were advised to monitor official channels for updates on potential burns, compensations, or reserve actions as the situation evolved.

The attack mirrors earlier private-key-driven depegs and governance failures seen in 2026, reflecting a recurring risk pattern in stablecoins.