Circle is facing a proposed class action after investors in Drift Protocol alleged the stablecoin issuer failed to freeze roughly $230 million in stolen USDC during the April 1, 2026 exploit, even though the funds allegedly moved through Circle’s own bridge for hours. The complaint, filed in federal court in Massachusetts on April 14, does not just revisit a hack headline. It goes straight at a bigger question for crypto markets: when a centralized stablecoin issuer can freeze funds, when does inaction become liability?
Last Updated: April 20, 2026, 14:20 UTC
Case Filed: April 14, 2026, U.S. District Court for the District of Massachusetts
Alleged Stolen USDC at Issue: About $230 million
Total Drift Exploit Cited in Complaint: About $280 million
Complaint Targets an Eight-Hour Window After the April 1 Exploit
The filing is specific. Very specific. According to the class action complaint filed as Case 1:26-cv-11733 on April 14, 2026, attackers drained approximately $280 million from Drift Protocol on April 1, 2026, and then used Circle’s infrastructure to move a large share of the proceeds. The complaint states the exploit began at about 11:15 a.m. EDT on April 1, which is 15:15 UTC, and alleges Circle then had an approximately eight-hour period in which it could have intervened before the stolen assets were converted into harder-to-freeze crypto assets.
How come Circle froze the USDC balance of 16 unrelated hot wallets late yesterday for a civil case?
A basic review of onchain activity makes it obvious they are operational wallets.
You fail to protect users during actual incidents yet respond to a request riddled with errors… pic.twitter.com/lSPCnIA1xK
— ZachXBT (@zachxbt) March 24, 2026
That timing matters because the plaintiffs are not arguing that Circle caused the hack. They are arguing that Circle allegedly enabled the escape route. The complaint says attackers moved around $230 million through Circle’s USDC and Cross-Chain Transfer Protocol, or CCTP, before swapping into Ether across more than 100 Ethereum wallets. By the plaintiffs’ telling, that made the funds effectively unreachable by the time law enforcement or victims could react through normal channels.
Public reporting broadly matches the core figures. CCN reported on April 17, 2026 that investor Joshua McCollum filed the suit in Massachusetts on behalf of more than 100 affected users, while Investing.com separately reported that the complaint centers on Circle’s alleged failure to freeze about $230 million in USDC after a roughly $280 million Drift exploit on April 1, 2026. Those two reports align with the court filing on the headline numbers and legal theory, which is important because early crypto litigation coverage often drifts on basic facts. Here, the central figures are consistent across sources.
Derived Metrics Analysis
| Calculated Metric | Current Value | Reference Value | Deviation | Signal |
|---|---|---|---|---|
| USDC Share of Total Exploit | 82.1% | $230M / $280M | High concentration | Stablecoin rail was the main exit path |
| Unfrozen Value Per Hour | $28.75M | $230M over 8 hours | Elevated | Response lag carried material recovery risk |
| Bridge Flow Intensity | $2.40M per minute | $230M over ~96 minutes equivalent if spread across 100 tx blocks | Fast | Monitoring needed to be automated, not manual |
| Exploit Drain Velocity | $23.3M per minute | $280M over 12 minutes | Extreme | Initial theft was too fast; post-theft bridge phase was slower |
Methodology: Calculations use figures stated in the April 14, 2026 complaint and corroborating media reports opened on April 20, 2026. USDC share equals 230 divided by 280. Unfrozen value per hour equals 230 divided by 8. Exploit drain velocity equals 280 divided by 12. The point is not precision to the dollar. It is mechanism: the theft was rapid, but the alleged laundering path was materially slower.
#Circle is facing questions on how it handles #crypto compliance$USDC supply stands near $77.1B, with about 7% of alleged compliance cases tied to a single major exploit, raising focus on how and when funds are frozen.
Watch whether Circle changes its response process after… https://t.co/r0WHecrHJG
— INVEST (@invest) April 4, 2026
Why the Freeze Argument Is More Serious Than a Standard Post-Hack Blame Game
Here is the angle many quick reports miss: the lawsuit is really about operational asymmetry. Circle is being sued not because USDC is decentralized, but because it is not. The complaint points to Circle’s own contractual and technical powers, including language that Circle “may suspend accounts in its sole and absolute discretion,” and cites a March 23, 2026 incident in which Circle froze USDC held in 16 wallets tied to a sealed civil lawsuit. That was nine days before the Drift exploit.
That comparison is the heart of the case. If Circle could freeze 16 wallets on March 23, 2026, plaintiffs argue, why was no comparable intervention made during the April 1, 2026 Drift incident while stolen USDC allegedly crossed chains in plain sight? The complaint says at least one of those 16 wallets was later unfrozen, which plaintiffs use to argue that Circle’s controls are not theoretical. They are active, discretionary, and already deployed in other contexts.
I have covered enough exploit cases to know where this gets messy. Freezing funds sounds simple until an issuer has to decide, in real time, whether a wallet is definitively tied to theft, whether a freeze order exists, and whether acting without process creates a different legal problem. The Block reported that Circle CEO Jeremy Allaire said acting outside established legal processes in private matters can create a “significant moral quandary.” That does not resolve the lawsuit, but it does frame Circle’s likely defense: capability is not the same thing as obligation.
Event Sequence: April 1 to April 14, 2026
15:15 UTC, April 1: Complaint alleges the Drift exploit began at approximately 11:15 a.m. EDT, draining about $280 million. (Court filing)
18:10 UTC, April 1: Complaint says Drift first acknowledged the exploit at 2:10 p.m. EDT on X. (Court filing)
~23:15 UTC, April 1: Plaintiffs allege Circle had roughly an eight-hour window while attackers moved about $230 million through USDC and CCTP. (Court filing)
April 14, 2026: Joshua McCollum filed the proposed class action in Massachusetts federal court. (Court filing; CCN)
April 17, 2026: Broader media coverage of the suit accelerated across crypto and financial outlets. (CCN; Investing.com)
Circle’s Prior Freeze Record Cuts Both Ways
This is where the case gets uncomfortable for the industry. The complaint and subsequent reporting lean on a broader pattern of alleged compliance failures. CCN cited on-chain investigator ZachXBT’s claim that Circle failed to freeze roughly $420 million in illicit USDC activity since 2022. The examples referenced include a $9 million GMX-related theft in July 2025 and delayed action after the roughly $200 million Cetus exploit in May 2025. Cointelegraph separately reported two weeks ago that ZachXBT alleged Circle failed to freeze $232 million tied to the Drift incident despite a six-hour window and more than 100 transactions.
Update on the Ben Pasternak crypto situation: lawsuit and potential class action.
byu/Ok_Value_1593 inHaSisters_
But that same history also gives Circle a defense. A freeze function is a blunt instrument. Use it too aggressively and the issuer gets accused of arbitrary censorship or wrongful seizure. Cointelegraph reported three weeks ago that ZachXBT also criticized Circle for freezing 16 “unrelated” wallets in another civil case. In other words, Circle is being criticized from both directions: too passive in hacks, too aggressive in civil disputes. That contradiction is not trivial. It goes to the policy vacuum around centralized stablecoins.
⚠️
Legal Risk Alert: This case could test whether freeze capability creates a duty to act
The complaint does not merely seek damages tied to the April 1, 2026 Drift exploit. It challenges whether a stablecoin issuer with blacklist controls and a live cross-chain bridge can remain passive while allegedly stolen funds move for hours. If a court lets that theory survive early motions, other issuers may face pressure to formalize emergency freeze standards.
Can Circle Defend Inaction if USDC’s Selling Point Is Control?
That is the forward question, and it is bigger than one lawsuit. USDC has long been marketed as the regulated, institution-friendly stablecoin. That positioning helps with adoption, but it also raises expectations. If users believe the issuer can freeze stolen funds, they may assume it should. The Drift complaint tries to convert that expectation into a legal claim.
Data Verification: The key figures were cross-checked across the April 14, 2026 complaint, CCN’s April 17, 2026 report, and Investing.com’s April 17, 2026 report. All three sources point to an exploit of about $280 million, with about $230 million in USDC allegedly moving through Circle-linked rails before conversion. Variance on the core numbers is minimal.
My read is simple. The unique issue is not whether Circle had a freeze button. It is whether the slower bridge-and-convert phase created a practical intervention window after the initial 12-minute theft. Plaintiffs say yes. Circle will likely argue that real-time certainty, legal authority, and operational fairness are not so clean. Either way, this case lands at the fault line of crypto’s hybrid model: centralized control wrapped around supposedly permissionless rails.
Frequently Asked Questions
What is the Circle lawsuit about?
The proposed class action alleges Circle failed to freeze about $230 million in stolen USDC after the April 1, 2026 Drift Protocol exploit. The complaint, filed on April 14, 2026 in Massachusetts federal court, argues Circle had the technical ability and contractual authority to intervene while the funds moved through USDC and CCTP.
How large was the Drift Protocol hack?
The complaint says attackers drained approximately $280 million from Drift Protocol on April 1, 2026. Of that total, about $230 million is alleged to have moved through USDC-related rails before being swapped into Ether and dispersed across more than 100 Ethereum wallets.
Why do investors say Circle could have frozen the funds?
Plaintiffs point to Circle’s blacklist and suspension powers, plus a March 23, 2026 incident in which Circle froze 16 wallets tied to a sealed civil case. Their argument is that Circle had already demonstrated both the capability and willingness to freeze on-chain USDC in other situations.
Has Circle been accused of similar delays before?
Yes. Reporting citing ZachXBT says Circle allegedly failed to freeze roughly $420 million in illicit USDC activity since 2022, including cases tied to GMX and Cetus. Those claims are part of the narrative around the lawsuit, though they are separate incidents and not final court findings.
What could this case mean for USDC and other stablecoins?
If the lawsuit advances, it could pressure stablecoin issuers to define when emergency freezes are triggered, what evidence is required, and how quickly they must act. The broader issue is whether control over a token creates a legal duty to use that control during hacks.
Disclaimer: This article is for informational purposes only and does not constitute legal, financial, or investment advice. Allegations in the complaint remain unproven unless established in court. Cryptocurrency and digital asset markets carry significant risk.
