News View Non-AMP

Matcha Meta SwapNet Security Breach Drains $16.8 Million

Published by
Rizwan Ansari

Blockchain security platform PeckShieldAlert has flagged a major security breach involving SwapNet, affecting users who interact through Matcha Meta. Meanwhile, attackers exploited token approvals to drain $16.8 millions in crypto. 

PeckShieldAlert data reveal how disabled safety settings exposed users to unexpected losses.

How the SwapNet Hack Happened

According to PeckShieldAlert, the hack did not happen due to a flaw in Matcha Meta itself, but because of how some users managed token approvals.

Matcha Meta offers a One-Time Approval feature, which limits token access to a single transaction. However, users who turned off this feature and instead gave direct, long-term allowances to individual aggregator contracts exposed themselves to higher risk.

Attackers took advantage of these permanent approvals linked to SwapNet. Once access was granted, the hacker could move funds freely without needing further user confirmation. This is how wallets were drained without users actively signing new transactions.

On-Chain Activity Confirms Fund Movement

Blockchain data shows that the attacker focused heavily on the Base network. Around $10.5 million worth of USDC was swapped for roughly 3,655 ETH. Shortly after, the attacker began bridging the funds from Base to Ethereum, a common tactic used to reduce traceability.

Additional transaction records reveal large USDC transfers exceeding $13 million, along with Uniswap V3 liquidity interactions. Altogether, PeckShieldAlert estimates that approximately $16.8 million in crypto was stolen.

Matcha Meta and SwapNet’s Response

Matcha Meta quickly acknowledged the incident and confirmed it is working closely with the SwapNet team. As an immediate step, SwapNet temporarily disabled its contracts to prevent further exploitation.

To protect users going forward, Matcha Meta removed the option to set direct aggregator allowances, ensuring this type of exposure cannot happen again. The platform also urged users to revoke all existing approvals outside of 0x’s One-Time Approval contracts, especially those linked to SwapNet’s router contract.

Investigations are ongoing, and both teams have promised continuous updates as they work to understand the full impact and monitor the stolen funds.

Rizwan Ansari

Rizwan is an experienced Crypto journalist with almost half a decade of experience covering everything related to the growing crypto industry — from price analysis to blockchain disruption. During this period, he’s authored more than 3,000 news articles for Coinpedia News.

Recent Posts

XRP Price Target Cut Sharply From $8 to $2.80 by Standard Chartered

A sharp shift in outlook from one of the world’s largest global banks has created…

February 16, 2026

Bittensor (TAO) Price Surges—How Long Will the $200 Mark Remain Out of Reach?

Bittensor (TAO) price is attempting a recovery after a sharp pullback, but the rally is…

February 16, 2026

Why Are Bitcoin, Ethereum, and XRP Prices Going Down Today?

The cryptocurrency market is facing another day of losses, with major assets such as Bitcoin,…

February 16, 2026

After Holding $65K Support, Can Bitcoin (BTC) Price Break Above $72,600?

Bitcoin price is once again trading at a critical juncture as derivatives data begins flashing…

February 16, 2026

Hedera vs Cardano: Which Crypto Could Win the 2026 Market Cycle?

After several years of volatility, two long-standing blockchain networks, Hedera (HBAR) and Cardano (ADA), are…

February 16, 2026

Why a Higher XRP Price Like $1000 Could Actually Make Payments Cheaper

A growing discussion in the crypto market is challenging a common assumption that higher token…

February 16, 2026