Known-threat-actor cluster has touched protocol

Fluid's assessment for RD-F-158 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No confirmed Lazarus Group / DPRK TraderTraitor interaction with Fluid core contracts as of 2026-04-29. The Resolv/USR incident (March 2025, ~$70M Fluid bad debt) was caused by a compromised AWS signing key at Resolv Labs — not DPRK-attributed. Instadapp/Fluid: 7+ year operational history (founded 2018), VC-backed ($12.4M from Coinbase, Pantera Capital, Ideocolab), doxxed founders (Samyak Jain, Sowmay Jain, Forbes 30 Under 30 India awardees). No DPRK attribution in any public TI report (Chainalysis, TRM, OFAC) as of 2026-04-29. Tier C signal — advisory only, never grade-flip.

Sources #

URL
Instadapp Crunchbase profileCrunchbase Instadapp — $12.4M raised, Coinbase/Pantera investors, founded 2018retrieved 2026-04-29
URL
Sentora Research — The Resolv Hack: $25M from a single compromised keyResolv hack attribution — AWS key compromise at Resolv Labs, not DPRKretrieved 2026-04-29

Methodology #

Detect whether an address from the curator-maintained threat-actor cluster (past exploiters, labeled attacker families) interacted with this protocol in the last 30 days.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol fluid factor RD-F-158 score green collected_at 2026-04-29 10:35:01