Cardano pockets SecondFi has recognized a restoration path for customers affected by Tuesday’s exploit and expects to start returning property in about two weeks, following testing and safety critiques.
In response to a Saturday statement by Phillip Pon, CEO of SecondFi developer Emurgo, the corporate accomplished forensic investigations and established a restoration pathway for affected customers. Pon mentioned the approaching week could be spent constructing the answer, adopted by one other week of testing earlier than property start to be returned.
Pon urged customers to chorus from migrating property or taking actions outdoors official steering, saying the restoration course of was designed round present pockets states and that impartial motion might complicate the safe return of funds.

SecondFi developer Emurgo shared an replace on the pockets’s restoration efforts. Supply: Emurgo
SecondFi disclosed a security breach on Tuesday that affected roughly 16 million ADA, price about $2.4 million on the time, throughout 374 addresses. SecondFi beforehand mentioned it traced the incident to an address-level subject in its Cardano internet pockets technology software program that uncovered customers’ non-public keys.
Associated: Q2 2026 emerges as most-hacked quarter on record with 83 incidents
The corporate additionally mentioned it secured roughly 129 million ADA by way of emergency measures and transferred the funds to an impartial third-party custodian, the place they may stay till the verification and restoration course of is full.
SecondFi has not but revealed a complete autopsy detailing the vulnerability or how the exploit was carried out.
SecondFi warns of recovery-related scams
In a separate replace on Saturday, SecondFi warned that malicious actors are circulating fraudulent messages impersonating the pockets whereas its restoration effort stays underway.
The corporate mentioned no restoration actions requiring consumer participation have begun and that it’s going to by no means ask customers for personal keys, seed phrases, pockets credentials or direct pockets entry.
SecondFi mentioned any messages instructing customers to submit pockets data, migrate property or take speedy motion outdoors its verified communication channels must be handled as fraudulent.
It added that customers requiring help ought to submit a ticket by way of its official help portal whereas the restoration course of continues.
Journal: AI is banking the unbanked in Africa… faster than crypto












