•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Bisq, the decentralized Bitcoin trading protocol, suffered a targeted exploit that resulted in approximately 11 BTC being stolen from active offers. A compensation plan for affected users is now being discussed within the Bisq community, though no final terms have been announced.
The Bisq development team confirmed that a trade protocol exploit was discovered, prompting an immediate trading halt while investigations began. The attack drained funds from active offers on the platform.
The confirmed loss totals approximately 11 BTC. Reporting that cited the Bisq team said the exploit was linked to a negative miner fee validation gap in the Bisq v1 protocol.
The full technical details of how the attacker exploited the validation gap have not been publicly disclosed in a comprehensive post-mortem. The identity of the attacker remains unknown.
It is also unclear how many individual traders were affected and whether the exploit was a single event or occurred across multiple transactions over a period of time.
For individual traders who had active offers on Bisq at the time of the exploit, the loss is direct and immediate. Unlike centralized exchanges that may carry insurance funds, Bisq operates as a decentralized protocol without a central treasury that can automatically absorb losses.
The trading halt imposed during the investigation also prevented all users from executing trades, creating operational disruption beyond those who lost funds. The Bisq community support forum has been active with affected users seeking information.
For Bisq as a protocol, the incident raises questions about the security of its trade mechanism. Bisq has positioned itself as a privacy-focused, non-custodial trading venue for Bitcoin, and an exploit that drains active offers directly undermines that value proposition.
The incident also comes as Bitcoin market structure faces broader scrutiny, with analysis indicating that BTC short liquidations could reach $1.01 billion above key price levels—highlighting how infrastructure vulnerabilities can compound during periods of market stress.
The Bisq team posted an update indicating that a compensation framework is being worked on. Because Bisq is governed through a decentralized autonomous organization structure, any compensation plan would need to go through community governance processes.
This means affected users cannot expect an immediate payout. The discussion phase is described as a necessary step in Bisq’s governance model before any funds can be allocated.
Several critical details remain open, including who would be eligible for compensation, how the reimbursement amount would be calculated, what timeline affected users should expect, and whether the DAO treasury has sufficient funds to cover the full loss.
It is also unclear whether compensation would be denominated in BTC or in BSQ (Bisq’s governance token), which could significantly affect the value received by affected traders.
Bisq is one of a small number of fully decentralized, non-KYC Bitcoin trading protocols. Its security model differs from centralized exchanges, which is part of its appeal to privacy-conscious Bitcoin users.
When a decentralized protocol suffers an exploit, there is no corporate entity to absorb losses or issue refunds unilaterally. The compensation process depends on community governance and treasury availability. This tradeoff—autonomy in exchange for reduced recourse—is central to the decentralized trading model.
The incident may also prompt renewed discussion about whether decentralized trading venues need additional protocol-level safeguards, particularly around validation logic for transaction fees. Broader Bitcoin market signals, including a recent decline in BTC funding rates, suggest trader sentiment remains fragile, making protocol-level trust especially important.
For institutions exploring Bitcoin-native infrastructure, including efforts such as Coinbase opening digital asset access for Australian self-managed super funds, the security track record of underlying protocols remains a foundational concern.
Bisq suffered a targeted trade protocol exploit that allowed an attacker to drain funds from active offers. Trading was halted while the team investigated.
Approximately 11 BTC was stolen in the attack.
No. A compensation plan is under discussion within the Bisq community governance process, but no final terms, amounts, or timelines have been announced.
Users should monitor official Bisq community channels for updates on whether trading has resumed and what protocol fixes have been implemented before placing new offers.
Early reporting indicates the exploit was tied to a negative miner fee validation gap in the Bisq v1 protocol. A full technical post-mortem has not yet been published.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency and digital asset markets carry significant risk. Always do your own research before making decisions.
Premium gym chains are entering a “golden era” that is ending or already in decline, as rising operating costs collide with shifting consumer preferences toward more flexible, community-based ways to exercise. Long-term memberships are shrinking, margins are pressured by higher rents and facility expenses, and competition from smaller, more personalized…
