The decentralized trading platform RetoSwap has officially announced a suspension of all activities following a security breach targeting the Haveno protocol. On June 17, 2026, at approximately 02:02 Beijing time, the development team received reports of an ongoing exploit. In an immediate response to mitigate the threat, the platform implemented a mandatory upgrade to client version 2.0.0 via its internal filter mechanism and blacklisted the attacker's specific onion address.
Impact Assessment and Security Measures
According to official statements, the vulnerability originated within the Haveno protocol architecture rather than RetoSwap's specific implementation. Initial investigations suggest that the damage is concentrated on large-scale cryptocurrency orders, while users engaged in fiat-to-crypto transactions appear to have remained unaffected. This incident marks a recurring challenge for the platform, as it follows a previous security failure on May 21, where a similar Haveno vulnerability resulted in the theft of approximately 0.7 million units in digital assets.
- Identification of the exploit at 02:02 AM (UTC+8).
- Activation of the filter function to enforce minimum version 2.0.0.
- Suspension of all active trading pairs to prevent further capital outflow.
- Isolation of the malicious onion address used by the perpetrator.
Recovery Roadmap and Protocol Fixes
The RetoSwap team is currently analyzing the extent of the financial losses to provide a recovery framework for the affected traders. Because the Haveno protocol is a decentralized peer-to-peer exchange network built on the Monero (XMR) ecosystem concepts, fixing the underlying bug requires a coordinated update of the protocol's core logic. The developers have clarified that the exchange service will remain offline until the patch is verified and the network integrity is restored.
In a statement regarding the ongoing situation, the team noted:
Losses appear to be limited to large cryptocurrency orders, with fiat traders unaffected. The team is evaluating solutions to help affected traders recover. Trading will resume after the protocol is fixed.
This event highlights the inherent risks associated with early-stage decentralized protocols and the importance of robust security auditing in P2P trading environments. Users are advised to monitor official channels for the release of the finalized security patch and to ensure their local clients are updated to the latest secure version before attempting to reconnect to the network.
Frequently Asked Questions
Quick answers to the most common questions about this topic.