A viral headline claiming XRP is not yet classified as a financial instrument in Japan, a DeFi exploit that saw attackers mint at least 80 million unbacked stablecoin tokens through just 200,000 USDC in seed capital, and broader crypto market turbulence mark the major crypto news today on March 22, 2026.
Why XRP Is Still Not a Financial Instrument in Japan
The headline’s claim that XRP is “not a financial instrument in Japan yet” has circulated widely, but the word “yet” does more heavy lifting than it appears. Japan classifies crypto assets under its Payment Services Act, not under the Financial Instruments and Exchange Act that governs securities. That distinction means XRP, like other crypto assets traded on licensed Japanese exchanges, is regulated as a form of payment, not as a financial instrument in the securities sense.
This matters because securities classification would impose stricter disclosure, registration, and investor-protection requirements. The fact that XRP has not been reclassified does not signal a regulatory gap. It reflects the existing framework Japan has maintained since its 2017 amendments to the Payment Services Act.
For readers tracking XRP’s market structure risks, the takeaway is straightforward: no new regulatory action has changed XRP’s legal status in Japan. The “yet” in the headline implies a future reclassification that is not currently supported by any announced legislative or regulatory initiative. Until Japan’s Financial Services Agency signals otherwise, XRP remains a crypto asset under existing law, and discussions around potential crypto regulatory hurdles remain speculative.
How the Resolv Labs Hack Unfolded Through a 200,000 USDC Trade
The more consequential story in today’s crypto news is the exploit of Resolv Labs, a DeFi protocol whose USR stablecoin was designed to be minted and redeemed on a 1-to-1 basis against liquid collateral. On March 22, an attacker used just 200,000 USDC across two transactions to mint tens of millions of unbacked USR tokens, triggering a cascading depeg event.
Resolv Labs confirmed the exploit in an official statement, acknowledging that attackers minted 50 million unbacked USR. The team said it paused all protocol functions to prevent further malicious actions and began working on recovery.
“Resolv has experienced an exploit that allowed the attackers to mint 50mn of unbacked USR. The team has currently paused all the protocol functions to prevent further malicious actions and is actively working on recovery.”
Source: Resolv Labs on X
Blockchain security firm PeckShield flagged a second transaction minting an additional 30 million USR, bringing the total unbacked supply created in the attack to at least 80 million USR. Both exploit transactions were each seeded with just 100,000 USDC.
ON-CHAIN DATA
- Transaction 1: 0xfe37…3743 — 100,000 USDC deposited, 50,000,000 USR minted, 49,950,000 USR sent to exploiter
- Transaction 2: 0x41b6…f18f — 100,000 USDC deposited, 30,000,000 USR minted, 29,970,000 USR sent to exploiter
- Total unbacked USR minted: 80,000,000 USR
- Total exploit funding: 200,000 USDC
D2 Finance, a DeFi analytics account, detailed the mechanism: the attacker deposited 100,000 USDC into Resolv’s USR Counter contract via the requestSwap function and received approximately 49,950,000 USR back, worth roughly $39 million at pre-exploit prices. The root cause has not been officially confirmed, though D2 Finance described possibilities including oracle manipulation, signer compromise, or amount-validation failure.
USR Price Collapsed 55% as Exploiter Dumped Tokens Into Curve
The market impact was immediate and severe. The attacker-minted USR was dumped into the USR/USDC Curve liquidity pool, causing a flash crash that briefly drove USR’s price to $0.025, a 97.5% drop from its intended $1.00 peg. The USR stablecoin crash rippled through connected protocols.
At the time of verification, USR was trading near $0.4494, still down 55% over 24 hours. Trading volume surged to $46.36 million as market participants scrambled to exit positions, against a market cap that had fallen to $79 million.
Third-party protocols moved quickly to limit contagion. Euler Finance disabled RLP as collateral in response to the depeg, while the broader DeFi community flagged exposure risks. CoinGecko’s community sentiment tracker showed 71% of the USR community turning bearish.
The headline’s framing of “$25 million stolen” deserves a caveat. While the exploit clearly created tens of millions in unbacked tokens, the exact realized theft total after swaps, slippage, and any potential recovery remains unconfirmed. No official postmortem or treasury impact report from Resolv Labs has been published yet. The confirmed facts are that 80 million unbacked USR were minted using 200,000 USDC, and those tokens were dumped into market liquidity.
What the Broader Crypto Market Is Watching Today
Beyond the Resolv exploit, the truncated headline referenced at least one additional development involving “120,” likely pointing to a significant price level, volume metric, or institutional milestone. Without confirmed sourcing, the specifics remain unverified.
What is clear is that today’s crypto news cycle is dominated by security concerns and regulatory uncertainty. The Resolv incident joins a growing list of DeFi exploits in 2026, reinforcing questions about smart-contract audit standards and stablecoin backing mechanisms. For protocols that offer collateralized stablecoins, the exploit highlights how a single validation failure can cascade from a $200,000 attack into tens of millions in market damage.
The XRP classification discussion, while less dramatic, underscores a persistent tension in crypto markets: the gap between what headlines imply and what regulators have actually done. For traders and investors parsing today’s crypto news, the actionable signal is in the on-chain evidence and official statements, not in headline compression.
Resolv Labs has not announced a timeline for its postmortem or any plans for affected USR holders. Protocol functions remain paused. Further clarity will depend on whether the team publishes a full incident report detailing the exploit vector and treasury impact.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency and digital asset markets carry significant risk. Always do your own research before making decisions.
