Circle Defends Limited Role in $285 Million Crypto Hack, Citing Legal Boundaries
Circle is facing criticism from parts of the crypto community after hackers drained about $285 million from the Solana-based Drift protocol, most of which was quickly converted into USD Coin (USDC) and transferred to Ethereum. Blockchain investigator ZachXBT alleged Circle could have acted faster to freeze the stolen assets and limit losses. Singapore Summit: Meet the largest APAC brokers you know (and those you still don't!) . 2/ Circle operates USDC, a centralized stablecoin pegged 1:1 to USD, marketed as a regulated company with a robust compliance program.Its token contract includes a freeze/blacklist function, and its terms of service explicitly state it reserves the right to restrict access forтАж pic.twitter.com/Plnq6IDV6A тАФ ZachXBT (@zachxbt) April 3, 2026 Legal Risks and Regulatory Constraints According to security firm PeckShield, the attacker bridged roughly $232 million in USDC using CircleтАЩs cross-chain transfer protocol (CCTP), complicating recovery efforts. Critics argue Circle had the authority to blacklist or freeze wallets tied to suspicious activity. However, legal experts say acting without a law enforcement order could expose Circle to liability. The initial estimated loss of today's @DriftProtocol loss is $285m. Here is the detailed breakdown: https://t.co/z3DjfN0NP1 pic.twitter.com/P84p2UVJZi тАФ PeckShieldAlert (@PeckShieldAlert) April 1, 2026 Circle maintained that it freezes USDC only when legally required. The incident has reignited debate about the responsibilities of centralized stablecoin issuers during fast-moving exploits. You may also like: CFTC Sues Arizona, Connecticut, and Illinois for Overreach on Prediction Markets Analysts say the attack, suspected to involve North Korean-linked hackers, exposes a gray area
Circle, the company behind the USD Coin (USDC) stablecoin, is facing scrutiny from the crypto community following a $285 million heist from the Solana-based Drift protocol. The attack saw most of the stolen funds quickly converted into USDC and transferred to the Ethereum blockchain. Blockchain investigator ZachXBT claimed that Circle could have taken faster action to freeze the stolen assets, thereby limiting the losses.
Circle operates USDC, a centralized stablecoin pegged at a 1:1 ratio to the US dollar. Marketed as a regulated entity with a strong compliance program, the token contract includes a freeze/blacklist function, and its terms of service explicitly state that Circle reserves the right to restrict access to user accounts. However, critics argue that Circle had the authority to act more swiftly in this situation.
Security firm PeckShield reported that the attacker bridged approximately $232 million in USDC using CircleтАЩs cross-chain transfer protocol (CCTP), which has complicated recovery efforts. Legal experts emphasize that while Circle has the capability to freeze suspicious wallets, acting without a law enforcement order could expose the company to potential liability. Circle maintains that it only freezes USDC when legally required, highlighting the complex legal boundaries within which such companies operate.
The incident has reignited debates about the responsibilities of centralized stablecoin issuers during fast-moving exploits. Analysts suggest that the attack, suspected to involve North Korean-linked hackers, exposes a gray area between the need for rapid intervention and the necessity of due process. The swift movement of stolen funds within seconds of an exploit underscores the challenges faced by companies like Circle in balancing proactive measures with legal constraints.
In the broader context, more than $4 billion was stolen in 255 crypto hacks last year, according to Global Ledger. The rapid pace of these attacks and the complexity of the digital asset landscape continue to pose significant challenges for regulators, law enforcement, and companies like Circle. As the crypto industry evolves, the need for clear guidelines and collaboration between stakeholders to address such threats becomes increasingly apparent.
