Stablecoin bank Kontigo faces USDC theft incident, will fully compensate $340,000 in losses

Stablecoin Bank Kontigo for the Venezuelan Market Confirms Security Breach, USDC Theft Exceeds $340,000

Recently, Kontigo, a new stablecoin bank targeting the Venezuelan market, confirmed a security vulnerability in its system, resulting in the theft of USDC from some users’ wallets, involving over $340,000. The company subsequently issued a statement promising to fully compensate all affected users, sparking widespread concern over the security of stablecoin banks.

According to an official update released by Kontigo on January 5, the platform detected unauthorized system access, affecting funds of some customers. After the incident, Kontigo immediately isolated the affected systems and activated internal security emergency procedures, while cooperating with external cybersecurity experts to investigate the cause of the vulnerability and assess the potential impact.

Kontigo stated that, based on preliminary statistics, approximately $340,905 worth of USDC was stolen, involving 1,005 users. Although the specific attack vector and technical details have not yet been disclosed, several users have recently reported abnormal account access behaviors on social media, with some screenshots showing unauthorized login attempts. It is currently unclear whether these cases are directly related to this security incident.

In response to user concerns, Kontigo explicitly stated that it will fully reimburse all affected funds and handle compensation on a case-by-case basis according to established security and compliance procedures. Meanwhile, the company has introduced stricter monitoring and risk control mechanisms during system recovery to prevent similar incidents from recurring and to ensure the integrity and continuity of platform operations.

Data shows that Kontigo was established in 2023, headquartered in San Francisco, and is a fintech company focused on Latin American and US Latinx users. Its core services include USDC-based stablecoin savings accounts, cross-border payment services, debit and credit cards, and investment access to Bitcoin and tokenized US stocks. The company has received support from well-known institutions such as Y Combinator and DST Global, and recently completed a $20 million seed round, with a valuation reaching $100 million.

This incident also occurs amid heightened security tensions in the crypto industry. Previously, Trust Wallet’s Chrome extension was attacked, resulting in losses exceeding $7 million; at the same time, security firm SlowMist warned that phishing attacks targeting MetaMask users have significantly increased recently, with attackers using “enabling two-factor authentication” as bait to steal seed phrases.

As stablecoin applications continue to expand, the USDC theft incident at Kontigo serves as a reminder to the market that the security of stablecoin banks, user asset protection, and compensation mechanisms have become critical issues in the infrastructure of crypto finance.