timbowhiteThe Resolv hack: How one compromised key printed $23M
https://www.chainalysis.com/blog/lessons-from-the-resolv-hack/
Missing from the article - the hacker first compromised Resolv Lab's AWS account, took a private key from KMS that was used to control minting, then managed to extract $25 million into ETH before all protocol functions were suspended.
> took a private key from KMS
They used KMS to sign the minting operation, but they didn't "take" the key, AWS KMS doesn't let you extract keys.