Circle Freeze and Gravity Bridge Hack Expose DeFi’s Growing Vulnerabilities
The decentralized finance (DeFi) sector faced a turbulent weekend as two major incidents underscored growing concerns around regulatory intervention, privacy infrastructure, and cross-chain security.
Summary:
- Circle froze $12.6M USDC tied to a legal dispute, impacting Zama users.
- Gravity Bridge lost $5.4M in a major cross-chain exploit.
- Both incidents expose key DeFi risks around compliance, privacy, and security.
A federal court-ordered freeze of $12.6 million in USDC linked to privacy protocol Zama and a separate $5.4 million exploit targeting Gravity Bridge highlighted the challenges facing decentralized networks as they intersect with traditional legal systems and increasingly sophisticated cyber threats.
Court-Ordered USDC Freeze Sends Shockwaves Through Privacy Protocols
The freezing of approximately $12.6 million in USDC by Circle has become one of the most significant legal interventions into decentralized finance to date. The action followed an emergency restraining order issued on May 29 by U.S. District Judge P.
Casey Pitts in the Northern District of California.
The court order stemmed from a class-action lawsuit filed against Maxim Ermilov, founder of yield-generation platform Overnight Finance and issuer of the USD+ stablecoin. Plaintiffs, including three investment funds holding Overnight Finance’s OVN governance token, allege that Ermilov attempted to improperly transfer more than $15 million from the protocol’s shared treasury.
Blockchain records cited in court filings indicate that approximately $15.77 million was moved from the treasury on May 11, with roughly $12.4 million bridged into Zama’s confidential USDC (cUSDC) smart contract. Following the court’s directive, Circle rapidly blacklisted the associated contract, effectively freezing the disputed assets.
Legal analysts and blockchain observers describe the move as a potentially landmark case. Unlike previous freezes tied to criminal investigations, sanctions enforcement, or law enforcement actions, this intervention originated from a private civil dispute and successfully reached assets held within a decentralized privacy-preserving protocol.
Zama Users Caught in the Crossfire
The consequences of the freeze extended beyond the disputed funds.
Because Zama’s cUSDC architecture pools liquidity while obscuring individual ownership to enhance privacy, Circle’s blacklisting of the contract effectively immobilized the entire liquidity pool rather than isolating a single wallet or user. As a result, legitimate users with no connection to Overnight Finance temporarily lost access to their assets.
The incident has reignited industry debate about the compatibility of privacy-focused smart contracts with centralized stablecoin issuers. Critics argue that the freeze demonstrates how compliance requirements can conflict with decentralized infrastructure, particularly when user funds become commingled within shared contracts.
The controversy gained additional visibility after prominent blockchain investigator ZachXBT highlighted the freeze on social media. Industry participants questioned whether the action could establish a precedent that exposes other privacy-preserving protocols to similar risks.
Some observers also pointed to past criticism of Circle regarding delayed responses to major crypto thefts and exploits, arguing that the company appeared to act more swiftly in response to a civil court order than during certain high-profile hacking incidents.
A hearing scheduled for June 1 is expected to determine whether the restraining order remains in effect and may provide broader guidance on the treatment of digital assets held inside privacy-enhancing protocols.
Gravity Bridge Suffers $5.4 Million Security Breach
In a separate development, Gravity Bridge, a decentralized interoperability protocol connecting Ethereum and the Cosmos ecosystem, suffered a major exploit that resulted in the theft of approximately $5.4 million in digital assets.
READ MORE: Chainlink Integration Expands Access to Strategy’s STRC Yield
Preliminary investigations by blockchain analysts and cybersecurity researchers suggest the attack may have originated from compromised signing credentials or leaked private keys associated with bridge operations. The breach reportedly enabled the attacker to bypass standard controls and withdraw assets directly from the Ethereum-side bridge contract.
According to blockchain security firms tracking the incident, the stolen assets included approximately $4.3 million in USDC, 274 Wrapped Ether (WETH), $434,000 in USDT, and 14.16 PAX Gold tokens.
#PeckShieldAlert The @gravity_bridge has been drained of ~$5.4M, including $4.3M $USDC, 274 $ETH (~$553K), $434K $USDT & 14.164 $PAYG ($64K)
The hacker has laundered a portion of the stolen assets through #ChangeNow & #Binance, and is still holding 2.102K $ETH (~$4.23M). pic.twitter.com/NJSNqc0G78
— PeckShieldAlert (@PeckShieldAlert) May 30, 2026
Upon detecting unusual outflows, Gravity Bridge operators issued an emergency alert instructing validators to halt validators and orchestrators while the incident was investigated. Validators responded quickly, suspending bridge operations and preventing additional losses.
Growing Pressure on DeFi Infrastructure
Blockchain tracking data indicates that portions of the stolen funds were rapidly moved through instant-swap services and centralized exchange infrastructure in an apparent effort to obscure their origin. However, investigators believe a significant share of the assets remains traceable, with the primary exploiter wallet reportedly holding more than 2,100 ETH.
The bridge’s native GRAV token experienced limited market fallout, declining roughly 4% following disclosure of the incident. Nevertheless, the exploit has renewed scrutiny of cross-chain infrastructure, which remains one of the most frequently targeted sectors in decentralized finance.
Taken together, the Zama freeze and Gravity Bridge exploit illustrate the evolving challenges facing the cryptocurrency industry in 2026. While regulators, courts, and stablecoin issuers increasingly demonstrate their ability to intervene in blockchain-based systems, hackers continue to exploit weaknesses in critical infrastructure. The dual incidents highlight a central question confronting the digital asset sector: how to balance privacy, decentralization, legal compliance, and security without compromising user trust or network resilience.
The information presented in this article is intended for informational purposes only and should not be interpreted as financial, investment, or trading advice. Coinspress.com does not promote or advocate for any particular investment strategy, asset, or cryptocurrency project. Cryptocurrency markets are highly volatile and unpredictable – always perform your own research and seek guidance from a qualified financial professional before making any investment decisions.
Alexander Stefanov
Reporter at CoinsPress
Alex is Editor-in-Chief of Coinspress and co-founder of Millennial Media Group, with nearly a decade of experience covering financial markets - crypto first, then everything else. It started in 2016 with Bitcoin. Like most people at the time, he didn't fully understand it - so he kept digging. Blockchain, tokenomics, the projects, the cycles. That curiosity never stopped, and eventually pulled him into traditional markets too: equities, commodities, macro. Not because he left crypto behind, but because you can't properly understand one without the other. What drives him is straightforward: he wants to know why something is happening, not just that it's happening. Most market coverage stops at the headline - price up, price down, here's a chart. Alex finds that kind of reporting actively unhelpful. If you walk away from an article without understanding the mechanism behind the move, what did you actually learn? He holds a degree in Tourism from New Bulgarian University - not the most obvious path into financial markets, but markets have a way of pulling in people who are simply too curious to stay out. He has authored over 200 in-depth analyses and more than 10,000 articles across crypto and traditional finance. He still thinks every day in markets teaches him something new. That's probably why he hasn't stopped.
