THORChain's Asgard vault lost $10.7M on 2026-05-15 after a newly joined node operator exploited a GG20 threshold signature scheme vulnerability — reconstructing the vault's full private key offline to forge unauthorized outbound transactions. 1 of 6 Asgard vaults was drained across Bitcoin, Ethereum, BNB Chain, and Base. Attacker's BTC address: bc1ql4u94klk265lnfur2ujk9p6uh52f2a8jhf6f37. Source: https://rekt.news/thorchain-rekt3