The Pi Network ecosystem faced renewed pressure in late December after a large-scale social engineering scam forced an emergency feature shutdown.
The incident exposed structural weaknesses in user-facing tools and added to an already challenging period for the network.
Wallet Feature Disabled After 4.4 Million Pi Loss
The Pi Core Team temporarily disabled the wallet payment request feature after community investigations revealed cumulative losses exceeding 4.4 million Pi tokens. The decision followed mounting reports of users unintentionally approving malicious payment requests that drained their balances.
The scam exploited two core elements of the network. First, transparent blockchain data allowed attackers to identify wallets holding large Pi balances. Second, scammers abused the payment request function by sending requests that appeared legitimate. When users approved these requests, funds were transferred out instantly.
Blockchain tracking and community monitoring suggest the exploitation was not isolated. One wallet address reportedly received between 700,000 and 800,000 Pi every month since July 2025, indicating a sustained and systematic drain rather than a single attack event.
Social Engineering, Not a Protocol Breach
Importantly, the incident did not stem from a direct protocol vulnerability. Instead, it relied on user error amplified by interface design. The payment request feature functioned as intended, but scammers leveraged trust, urgency, and wallet transparency to trick holders into authorizing transfers themselves.
By disabling the feature, the Pi Core Team aimed to immediately halt further losses while evaluating long-term safeguards. No timeline has been provided for when, or if, the payment request function will be re-enabled in its current form.
Legal Pressure and Token Supply Weigh on Sentiment
The scam unfolded against a backdrop of broader challenges for Pi Network. In October 2025, a U.S. investor filed a $10 million lawsuit, alleging a multi-year fraud scheme, unauthorized token transfers, and undisclosed sales of billions of Pi tokens by network executives.
At the same time, token supply dynamics intensified market pressure. Around 190 million Pi tokens entered circulation in December 2025, contributing to elevated selling activity. A further 134 million Pi are scheduled for unlock in January 2026, extending near-term dilution concerns.
Open Mainnet, But Persistent Structural Risks
Pi Network officially transitioned to its Open Network (Mainnet) on February 20, 2025, enabling theoretical external connectivity and trading. Despite this milestone, market confidence has remained fragile. As of December 31, 2025, Pi was trading around $0.20, reflecting ongoing uncertainty tied to governance, token economics, and user security.
The wallet exploit underscores a critical challenge for Pi’s next phase. As features expand and real value circulates, user-facing design choices and default permissions may carry risks equal to protocol-level security. Until structural protections improve, trust remains the network’s most fragile asset.
