Private key hack wipes out $21M from wallet on Hyperliquid

House and Senate Republicans have failed six times to pass funding legislation since the government shutdown began October 1, 2025. Some GOP members now want to negotiate on Affordable Care Act subsidies before advancing any funding bill.

On-chain records show the compromised address executed a series of unauthorized transfers that moved assets to multiple attacker-controlled wallets. The stolen funds included several tokens traded on Hyperliquid, but the full asset breakdown has not been confirmed.

PeckShieldAlert’s analysis attributes the theft to a private key leak rather than a smart-contract or protocol vulnerability. Independent investigator WuBlockchain reviewed the transactions and showed the attacker rapidly shuffled funds through other wallets, apparently to obscure their trail.

Hyperliquid has not reported service outages or protocol-level issues after the transfers. There is no evidence that the incident resulted from an exchange hack or a contract exploit.

Private key compromises can stem from phishing, malware, or poor key management. When a private key is exposed, attackers can move funds immediately. Analysts note recovery is unlikely unless centralized exchanges or custodial platforms identify and freeze the stolen tokens before they are converted or withdrawn.

Security teams continue to monitor the attacker wallets to trace where the tokens are sent. On-chain monitoring may map the flow of funds, but recovery typically depends on intervention by exchanges or law enforcement agencies.