Hypervault vanishes as $3.6M funnels to Tornado Cash – PeckShield
Blockchain security firm PeckShield says roughly $3.6 million was drained from DeFi protocol Hypervault and routed through Tornado Cash after being bridged from Hyperliquid to Ethereum and swapped into ETH. Soon after the alert, Hypervault’s website and X account went dark, intensifying concerns of an exit scam.
Roughly 752 ETH hit Tornado Cash routers in a series of 1/10/100‑ETH deposits visible on block explorers. A summary table in the alert shows the drain spanned multiple assets – with WHYPE (~$1.56M) the single largest line, plus USDC, USDT, kHYPE and wrapped UETH/UBTC among others – for a combined tally a little above $3.6 million.
Hypervault billed itself as a set of “unmanaged” auto‑compounding vaults on HyperEVM, using keeper bots and modular strategy adapters to route deposits into lending, looping and concentrated‑liquidity venues in search of yield. Docs described external deployments of user assets via these adapters and periodic harvesting by bots.
PeckShield hasn’t published a full wallet map beyond the Tornado destinations. At publication time, the app’s site was offline and its X account was deleted, removing the project’s support channels and heightening user anxiety.
In DeFi, a rug pull is when operators withdraw on‑chain liquidity or deposits and vanish, often after touting high yields or partial audits.
For affected users, discovery is still unfolding on‑chain. Community sleuths are tracing the bridged wallets and the deposit sequence, and aggregators have begun flagging the app as inactive. No statement has appeared from any verified Hypervault account.
Recommended