Huma Finance(@humafinance ):Earlier today a vulnerability in Huma’s legacy v1 contracts on Polygon was exploited for 101,400 USDC. No user funds at risk and PST is not impacted. Huma’s v2 system on Solana is a complete rewrite and this issue does not apply to v2 systems. The teams were already in the process of sunsetting all the legacy v1 pools, and have paused v1 completely now.

2026.05.11 15:23

Earlier today a vulnerability in Huma’s legacy v1 contracts on Polygon was exploited for 101,400 USDC. No user funds at risk and PST is not impacted. Huma’s v2 system on Solana is a complete rewrite and this issue does not apply to v2 systems. The teams were already in the process of sunsetting all the legacy v1 pools, and have paused v1 completely now.

Blockaid@blockaid_

2026.05.11 15:10

🚨 Exploit Alert - @humafinance V1 (deprecated) ✅ No user funds at risk. Huma Finance's V1 BaseCreditPool deployments on Polygon were exploited a few minutes ago for ~$101K. Total drained: ~$101.4K (USDC + USDC.e) More Details: