The TESSERA project, operating on the BNB Chain, has fallen victim to a significant security breach resulting in the unauthorized minting of millions of native tokens. On June 2, 2026, security monitoring services alerted the community to an exploit where attackers successfully manipulated the protocol to generate 99 million TSR tokens. The subsequent liquidation of these assets has led to a near-total collapse of the token's market value, marking another high-profile incident in the decentralized finance (DeFi) sector.
Mechanism of the Exploit and Financial Impact
According to data provided by on-chain analyst Specter, the attacker exploited a vulnerability within the TESSERA smart contract to mint an excessive supply of TSR. Following the minting process, the actor immediately offloaded the tokens onto decentralized exchanges. This massive sell pressure caused the TSR price to plummet by 99% in a matter of minutes, effectively wiping out the protocol's liquidity and investor value.
- The attacker realized an estimated profit of 0.4 million USD from the sale.
- Total tokens minted without authorization: 99 million TSR.
- The incident occurred on the BNB Chain (formerly Binance Smart Chain) infrastructure.
- The primary address associated with the exploit has been flagged by blockchain security firms.
Funds Transferred to Tornado Cash Mixer
Following the successful extraction of value, the perpetrator moved to obfuscate the trail of the stolen assets. Reports indicate that the attacker has begun depositing the proceeds into Tornado Cash, a non-custodial privacy protocol used to break the on-chain link between source and destination addresses. Privacy mixers like Tornado Cash are frequently utilized by malicious actors to bypass Anti-Money Laundering (AML) monitoring systems.
Furthermore, security analysts observed a correlation in malicious activity across the network. The UXLINK attacker is also reported to be active, currently depositing approximately 0.1 million USD into Tornado Cash. While it is not confirmed if these attacks are linked to the same entity, the simultaneous use of the mixer highlights a coordinated effort by bad actors to liquidate stolen digital assets.
In conclusion, the TESSERA exploit serves as a stark reminder of the persistent security risks within the DeFi ecosystem. As the project team and security researchers investigate the root cause of the unauthorized minting, users are advised to exercise caution with remaining liquidity. The loss of 400,000 USD and the subsequent 99% price drop underscore the critical importance of rigorous smart contract audits and real-time monitoring for emerging blockchain projects.
Frequently Asked Questions
Quick answers to the most common questions about this topic.
For educational purposes only. Nothing here constitutes financial or investment advice. Crypto markets are highly volatile — always DYOR before making any decisions.
Fact-checked per our editorial policy. We maintain strict independence from advertisers. Spot an error? Let us know.