system online · no logs · no tracking · no kyc tor: v3 ready
[never]kyc
login sign up →
root@neverkyc:/blog/is-fixedfloat-safe-in-2026-monero-swap-review$ cat post.md

Is FixedFloat Safe in 2026? An Honest Risk Review

// by ~anon · 2026-05-30 · mock,auto-generated,en

Is FixedFloat Safe in 2026? An Honest Risk Review

On February 16, 2024, FixedFloat lost roughly $26 million in BTC and ETH after attackers drained its hot wallets in a coordinated breach. Two years later, the question crypto users keep typing into search bars hasn't changed: is the exchange that markets itself as a "fast, anonymous, no-account" instant swap actually trustworthy again? With the rise of cross-chain memecoin trading and the maturing Monero ecosystem post-FCMP++, instant swappers like FixedFloat sit at the center of a heated debate about custody, KYC creep, and operational security. This review looks at what happened, what FixedFloat changed, and how it compares to alternatives such as MoneroSwapper for users who care about privacy as well as fund safety.

We're not here to bash or boost the service. We're here to tell you which threats are real, which are overstated, and what a careful user should actually do in 2026 when choosing where to swap their Monero, Bitcoin, or any other liquid asset.

What FixedFloat Is — and Isn't

FixedFloat is an instant cryptocurrency exchange that lets users swap between dozens of assets — including XMR, BTC, ETH, LTC, SOL, and several stablecoins — without creating an account. The interface is intentionally minimal: pick a pair, enter an amount, paste a payout address, and send. The exchange aggregates liquidity behind the scenes and returns the destination asset to your address.

It belongs to a category sometimes called non-custodial-feel swaps. The phrasing matters. FixedFloat is custodial for the seconds-to-minutes between when your deposit confirms and when the payout transaction lands on chain. During that window the exchange's hot wallet holds your funds. This is the same architectural truth that applies to SimpleSwap, StealthEx, ChangeNOW, Trocador, and effectively every "no-account" swap on the market. The marketing language varies; the underlying mechanic does not.

  • No account by default: you don't register, don't pass KYC at the front door, and don't receive a login.
  • Two rate modes: a "Fixed" rate (locked at quote time, slightly worse but predictable) and a "Float" rate (market-priced at execution, sometimes better, sometimes worse).
  • Refund address requirement: for non-trivial swaps, the platform asks for a refund address so it can return your funds if a transaction is flagged, frozen, or fails compliance review.
  • Address screening: like every regulated-adjacent service in 2026, deposits and payout destinations are screened against sanctions and AML risk providers; a "clean" deposit can still be flagged based on heuristic risk scoring.

That last point is what users mean when they grumble about AML risk on instant exchanges. It's not unique to FixedFloat — but it is the most common cause of frozen or delayed swaps in the wild.

The February 2024 Breach: What Actually Happened

Two years on, the FixedFloat hack is well-documented. Around 1,728 BTC (worth ~$21M at the time) and ~409 ETH (~$5M) disappeared from the exchange's hot wallets across multiple transactions. FixedFloat initially blamed "technical issues" before publicly acknowledging the breach 48 hours later. Funds were rapidly laundered through Tornado Eight (a sanctioned mixer at the time) and chain-hopped via cross-bridge protocols.

The post-mortem published by the team pointed to a compromise of internal infrastructure — not a smart contract exploit, since the service has no on-chain logic of its own. The most likely vector, according to subsequent independent analysis by blockchain forensics firms, was a combination of compromised operator credentials and an insufficiently segmented signing setup that let an attacker move funds without multi-party approval.

The lesson from FixedFloat 2024 isn't "instant swaps are unsafe." It's that any service holding hot-wallet liquidity is a target, and the user's exposure window is exactly the time between deposit confirmation and payout — usually under fifteen minutes for XMR.

Crucially, no user funds that had already been paid out were lost. The damage was to FixedFloat's own treasury, not to in-flight customer trades. The exchange covered losses, paused for roughly three weeks, and resumed operation with a new (publicly undisclosed) wallet architecture. To date, no user has publicly reported losing an in-flight swap to that incident.

What Changed Between 2024 and 2026

Two years is a long time in crypto-operational-security. FixedFloat made several visible changes — and the broader regulatory environment changed around it.

Post-breach hardening

The exchange now publicly states it uses cold-storage segregation, multi-signature hot wallets, and per-transaction velocity limits. None of that is independently audited; we have the team's word and the absence of a repeat incident. For a service with no on-chain smart contracts to audit, the trust assumption is structural — there is no contract to read.

MiCA and the European compliance squeeze

The EU's Markets in Crypto-Assets Regulation (MiCA) entered full effect for crypto-asset service providers in late 2024, with stricter Travel Rule enforcement following throughout 2025. FixedFloat, like most instant swappers, restricted access from EU IPs without verification for higher tiers. A small "Verified" flow now exists for users wanting larger swap limits; the no-account flow still works for smaller transactions but with tighter risk-screening thresholds.

Monero delistings elsewhere — and what it means for instant swaps

Major centralized exchanges including Binance, Kraken (in select jurisdictions), and OKX dropped Monero spot trading between 2024 and 2025. The result: instant swappers like FixedFloat, SimpleSwap, StealthEx, and MoneroSwapper became more structurally important to XMR liquidity, not less. FixedFloat continues to support XMR deposits and payouts in 2026 — a meaningful signal, given how many competitors quietly delisted it under pressure.

The FCMP++ upgrade and address screening

Monero's Full-Chain Membership Proofs (FCMP++) upgrade, expected to deploy on mainnet in 2026, replaces ring signatures with cryptographic proofs covering the entire ledger. This neither helps nor hurts an exchange's safety posture, but it does mean Monero withdrawals from FixedFloat are even more privacy-preserving than they were during the 16-ring era. Combined with stealth addresses and Bulletproofs+, an XMR payout is functionally untraceable on the receiving end.

FixedFloat vs. Alternatives: A 2026 Comparison

No instant swapper is the "best" for every case. Here's how FixedFloat stacks up against the names you'll actually see when researching alternatives.

Service Strengths Weaknesses XMR support
FixedFloat Wide pair coverage, fast UI, transparent fee display, recovered post-breach Past hot-wallet breach, opaque internal security, occasional AML holds Yes (both directions)
MoneroSwapper XMR-first design, no account, slim attack surface, no JavaScript-heavy widgets Narrower pair list (intentionally), smaller liquidity than mega-aggregators Yes — primary use case
SimpleSwap Very large pair list, long uptime history, mobile app Aggressive AML screening, frequent address-flagging complaints Yes
StealthEx Clean UI, decent rates, has weathered the 2024-2025 delisting wave Custodial window, ToS forbids "high-risk" deposits without notice Yes
Trocador Aggregates other providers, lets you choose KYC risk per route Routing logic adds a layer; refunds via upstream provider Yes

The right pick depends on what you optimize for. If privacy-of-the-output matters most — for example, swapping flagged Ethereum to clean Monero — a swapper that publicly commits to no-logs and pairs well with Tor is preferable. If swap-size and liquidity matter — for larger BTC volumes, for instance — bigger aggregators win. FixedFloat sits in the middle, and that's a reasonable position for many users despite the 2024 breach.

How to Swap Safely on Any Instant Exchange (Not Just FixedFloat)

The single most important truth: the safest swap is the smallest swap that gets the job done. Here is the procedure a security-minded user should follow on any instant exchange in 2026.

  1. Verify the URL. Phishing clones of FixedFloat, SimpleSwap, and StealthEx are common. Bookmark the real domain — do not Google search and click the first result. Confirm TLS certificate details if you are at all unsure.
  2. Test with a small swap first. A $20–$50 test swap costs you a few dollars in fees and confirms the service is operational, the rate is honest, and your payout address is correct.
  3. Use Tor or a privacy-respecting VPN. Especially for Monero swaps. The exchange logs your IP unless you take steps; you control that side of the leak.
  4. Use Fixed rate for predictable execution. Float rate can give you slightly better numbers but exposes you to slippage during the deposit confirmation window. For Monero (~20 minutes of confirmations), the float window is long enough that you should usually pick Fixed.
  5. Provide a real refund address. If the swap fails — AML hold, network reorg, deposit timeout — you want the funds returnable. Skipping the refund field is the single most common way users lose funds on instant swaps, and it has nothing to do with the exchange being malicious.
  6. Withdraw to your own wallet, not to another exchange. Chained CEX-to-CEX swaps are how compliance triggers cluster.
  7. Save the swap ID and transaction hashes. If the swap stalls, customer support cannot help without the transaction details. Screenshot them.
  8. For Monero, verify the payout subaddress format. A typo on a base58 Monero address is more recoverable than on Bitcoin (the format is more validated), but recovery still depends on the exchange's policies. Double-check.

Following this routine eliminates most of the "I lost money on an instant swap" stories — which, when you trace them, are almost never about exchange theft and almost always about user error or phishing.

Real-World Example: A Cautious 2026 Workflow

Consider a worked example. You have 0.5 BTC that arrived from a centralized exchange withdrawal, and you want to convert it to XMR to hold long-term in your own Monero wallet. You're worried about the BTC's chain history being linked to your KYC identity at the source exchange, and you're worried about FixedFloat's safety record. Here is a reasonable approach:

First, send the BTC to a self-custody wallet you control. Wait a confirmation. This breaks the "exchange address to swap address" direct link on chain. Second, open Tor Browser and navigate to your bookmarked swap service. Run a small test — say, 0.005 BTC to XMR — to confirm the rate, the destination address, and the end-to-end timing. Three to fifteen minutes later you should see XMR arrive in your Monero wallet.

Now run the main swap. Use the Fixed rate. Provide a refund address on a self-custody BTC wallet that is different from your source wallet, so a refund doesn't merge UTXOs in a way that defeats the purpose. Send the BTC. Wait. The XMR arrives in your Monero wallet, where stealth addresses, ring confidential transactions (RingCT), and Bulletproofs+ ensure the funds are no longer traceable from the BTC origin. Tools like MoneroSwapper are designed specifically for this Monero-final workflow, and a parallel test there gives you a comparison rate to confirm FixedFloat isn't quoting you an unfavorable spread.

This is not paranoid behavior in 2026. It's standard hygiene for anyone who treats Monero as their long-term private store of value.

FAQ

Was anyone's personal swap lost in the FixedFloat 2024 hack?

Publicly, no. The breach drained FixedFloat's own hot-wallet treasury — funds the exchange uses to pay out swaps. Users with in-flight trades during the outage window were either paid out after the service resumed or refunded to their refund addresses. The financial damage was absorbed by the company. That said, "no reported user losses" is not the same as "zero individual losses," and the lack of independent audit means we are taking the operator at their word.

Is FixedFloat KYC-free in 2026?

For small-to-medium swaps the default flow remains accountless. Larger swaps and certain risk-flagged corridors trigger an identity verification step or a refund-to-sender outcome. The exchange operates under a tightening EU and UK regulatory environment, which makes universal no-KYC promises increasingly difficult for any operator with a fixed jurisdiction.

How does FixedFloat compare to MoneroSwapper for XMR swaps?

FixedFloat offers a wider pair list — including many non-XMR pairs — and slightly deeper liquidity for non-Monero corridors. MoneroSwapper focuses specifically on Monero-in or Monero-out flows, with a deliberately small attack surface, a simpler UI, and a workflow that pairs well with Tor. For users whose final destination is XMR — the population we serve — MoneroSwapper is the more focused tool. For multi-asset rebalancing across non-Monero pairs, FixedFloat is the bigger menu.

What happens if my deposit gets flagged for AML?

Every reputable instant swapper screens deposits against sanctions lists and risk-scoring heuristics. If your deposit is flagged, you are typically asked to provide source-of-funds documentation. If you decline or cannot satisfy the request, the funds are returned to the refund address you provided at quote time. This is why omitting the refund address is dangerous — without it, flagged funds sit in limbo. This applies to FixedFloat, SimpleSwap, StealthEx, ChangeNOW, and every comparable service in 2026.

Can I use FixedFloat over Tor?

Yes. The site is accessible over Tor without CAPTCHA hell in most circuits as of early 2026. Performance varies. For maximum privacy, combine Tor for the swap initiation, a separate hot wallet for the deposit, and a fresh Monero subaddress for the payout. The combination minimizes the linkable surface area between your identity and the swap event.

What's the realistic worst case if I use FixedFloat today?

Two scenarios. First: a repeat of the 2024 hot-wallet breach during your swap window, which (based on precedent) would be absorbed by the operator but might delay your payout by hours or days. Second: an AML hold on your deposit, refunded eventually to the refund address you supplied. The worst-realistic-case for a swap done with the safety procedure above is delay, not loss. The worst-imaginable case — operator absconding with user funds — has not happened with FixedFloat and would be visible quickly via on-chain analysis, giving most users with normal swap durations a margin of escape.

Conclusion

Is FixedFloat safe in 2026? It's safer than it was in February 2024, the post-breach changes appear to be holding, and it remains one of the few wide-pair instant swappers that still supports Monero after the 2024-2025 delisting wave at major CEXs. That doesn't make it the right tool for every job. For Monero-final swaps where output privacy is the whole point, a Monero-specialized service like MoneroSwapper reduces your attack surface and aligns the operator's incentives with yours. For broader pair coverage and one-off conversions outside the XMR pipeline, FixedFloat is a reasonable choice — used with small test swaps, refund addresses, Tor, and the procedural hygiene any swap deserves in 2026. Pick the right tool, run a test, and never let a single exchange custody more than you are willing to wait fifteen minutes to lose.

← back to blog