Daily Crypto Briefs 
NEW YORK, June 24, 2026
SecondFi said Wednesday that about 129 million ADA was secured after a Cardano wallet-generation exploit, even as the company counted roughly 16 million ADA in external losses and ADA traded near $0.14.
The incident hit SecondFi, the EMURGO-built self-custody app formerly known as Yoroi. The company said it had identified the root cause, patched unaffected wallets and was routing rescued assets toward an independent custodian for a claims process.
Market data showed the security story landing into a weak ADA tape. CoinGecko showed Cardano near $0.1403 on June 24, down 6.3% over 24 hours and 18% over seven days, with about $505 million in 24-hour volume and a market value near $5.23 billion.
SecondFi warned users in its official June 24 update: “Please DO NOT RESTORE your recovery phrase into another Cardano wallet.” The company said the risk is address-level and can materialize when an affected user signs a transaction.
The distinction is important because the supported record does not show a Cardano base-chain failure. Bitquery’s on-chain investigation traced the problem to weak randomness in SecondFi’s wallet-generation code, meaning the blockchain processed transactions normally while the vulnerable wallet software failed to create properly secret keys.
That puts the case closer to a wallet infrastructure breach than a protocol exploit. It also arrives while Cardano is already under pressure from weak prices and governance fatigue, a backdrop Daily Crypto Briefs covered in its recent look at ADA’s slide below 20 cents.
Cardano
ADASecondFi Counts 16M ADA External Drains
SecondFi’s update split the incident into two categories. It said four draining events were identified, three of them by external threat actors, causing roughly 16 million ADA in losses across 374 addresses.
Those figures are lower than the raw on-chain totals circulating around the exploit. SecondFi said the larger 129 million ADA pool was secured through emergency measures during the active incident and would continue to move through an independent, qualified third-party custodian for affected addresses.
The company also said an external accounting firm would audit the rescued holdings. It directed affected users to submit claims through support.secondfi.io once verification is complete, but a final reimbursement timetable was not disclosed.
SecondFi’s App Store listing says the app has more than 1 million users and was built by EMURGO, a co-founding entity of the Cardano blockchain. That scale is why the incident spread quickly beyond ordinary wallet-support channels.
For users, the immediate operational risk is simple: an affected seed phrase is not made safe by being imported into different wallet software. The safer path is a fresh wallet with a newly generated recovery phrase, while claim details should come from official SecondFi channels rather than social media impersonators.
Bitquery Traces 129M ADA Into Vault
Bitquery reconstructed two waves of transactions and said more than 129 million ADA and 3,838 token types were swept from 3,072 wallets belonging to SecondFi users. Its report said the larger second wave concentrated 129,430,001 ADA into a single vault wallet that had not moved as of the publication.
The analytics firm said it had not independently verified SecondFi’s custodian routing or the company’s lower external-loss figure. It did, however, say the on-chain record supports a much larger sweep than the initial 16 million ADA loss number alone suggests.
The difference comes from what can be recovered. Bitquery described the first wave as roughly 12 million ADA plus tokens that moved through Minswap and other trading paths, while the larger second-wave ADA balance remained visible in one dormant vault.
That makes the case unusual among wallet exploits. Many incidents become harder to recover as attackers bridge, mix or sell assets quickly. Here, the largest ADA pool is still identifiable on-chain, if SecondFi’s custody and claims process holds up under audit.
Security incidents have hit several chains and applications this month, but the mechanics differ. The recent Aztec legacy-contract exploits involved deprecated smart contracts, while the SecondFi case centers on wallet key creation before a user ever signs a DeFi transaction.
Cardano Users Wait For Claims Audit
The next test is not only technical. SecondFi now needs to show which addresses qualify, how the accounting firm verifies claims, what the custodian controls, and whether users who lost ADA in the dispersed first wave are treated differently from users tied to the rescued vault.
Cardano’s base protocol is also likely to face a reputational drag even if the exploit stayed at the wallet layer. Retail users usually experience crypto through wallets, exchanges and apps, so a key-generation failure can damage confidence in the ecosystem even when validators and consensus rules are not implicated.
The timing is difficult for ADA. The token has fallen from about $0.242 on May 25 to roughly $0.143 on June 24, according to CoinGecko data reviewed by Daily Crypto Briefs, and the broader market remained in Extreme Fear.
Fear & Greed Index
June 24, 2026Wallet risk is becoming a larger market story because exploits are no longer confined to experimental DeFi contracts. Daily Crypto Briefs recently tracked how crypto platforms lost 605 million dollars in cyberattacks in under 20 days, underscoring how often user-facing infrastructure has become the weak point.
The next confirmed checkpoints are SecondFi’s claims instructions, the external accounting review, any evidence that the 129 million ADA custodian route is complete, and a full postmortem explaining how the wallet-generation flaw reached production.
Until those details are public, the supported conclusion is narrower than the headline panic: SecondFi says a large ADA pool was rescued, external drains remain material, and affected users should not treat an old recovery phrase as safe simply because it opens in another Cardano wallet.
Stay up to date
Get the latest crypto insights delivered to your inbox
Primary sources and further reading
| Source | Title |
|---|---|
| | SecondFi official June 24 incident update |
| | SecondFi support and claims portal |
| | Bitquery on-chain investigation of the SecondFi Cardano drain |
| | Apple App Store listing for SecondFi |
| | CoinGecko Cardano market data |
| | Alternative.me Crypto Fear and Greed Index |
Fact-checked by: Daily Crypto Briefs Fact-Check Desk
Related Articles
Frequently Asked Questions
What happened to SecondFi Cardano wallets?
SecondFi said a flaw in its native Cardano web wallet-generation software created address-level risk for some wallets. Bitquery's on-chain review traced large ADA drains from wallets tied to SecondFi users.
How much ADA did SecondFi say was lost?
SecondFi said three external draining events caused roughly 16 million ADA in losses across 374 addresses, while about 129 million ADA was secured through emergency measures.
Why are analysts talking about more than 129 million ADA?
Bitquery traced more than 129 million ADA swept from SecondFi users into a dormant on-chain vault and said SecondFi later described about 129 million ADA as rescued for claims.
Was Cardano itself hacked?
The supported evidence points to a SecondFi wallet-generation software flaw, not a Cardano base-layer failure. Bitquery said the Cardano chain processed transactions as designed.
Should affected users restore their old SecondFi seed phrase in another wallet?
SecondFi warned users not to restore an affected recovery phrase into another Cardano wallet, saying the risk is tied to the address and can materialize when a transaction is signed.
What should SecondFi users watch next?
Users should watch SecondFi's official support portal for claims instructions, the external accounting review, custodian details and any timeline for service restoration.