Third-party module exploit drains $3 million from Gnosis Safes

On May 25, 2026, a significant exploit involving the SquidRouterModule resulted in the theft of approximately $3 million from 86 Gnosis Safes. The attack exploited vulnerabilities in third-party modules, leading to a substantial financial loss for the affected wallets. The stolen tokens were swiftly converted into DAI on Ethereum and Base, indicating a well-coordinated operation behind the theft.

Squid, the provider of the module, has publicly clarified that its core systems were not compromised during this incident. This statement aims to distance the company from the exploit while addressing concerns about the security of third-party integrations in the cryptocurrency space.

The exploit targeted wallets across both Ethereum and Base networks, raising alarms about the security of third-party modules in the cryptocurrency ecosystem. As decentralized finance continues to grow, the reliance on third-party services increases, making it crucial for developers to ensure the integrity of their systems. The incident serves as a reminder of the potential risks associated with these integrations.

The timing of this exploit is particularly concerning, as it comes amid a broader conversation about regulatory measures in the cryptocurrency space. Stakeholders are now faced with the challenge of balancing innovation with security, as incidents like this could lead to stricter oversight from regulators.

The incident underscores the urgent need for enhanced security measures for third-party modules in cryptocurrency platforms. As the landscape evolves, developers will likely focus on strengthening their protocols to prevent similar exploits in the future. Additionally, the potential for regulatory responses to such vulnerabilities may shape the future of third-party integrations in the industry.

In the coming months, it will be essential to monitor how Gnosis and Squid respond to this incident and what new security measures they implement. The ongoing dialogue about security in decentralized finance will likely intensify as stakeholders seek to protect user assets and maintain confidence in the ecosystem.