IoTeX got compromised as the private key tied to a token safe associated with it gave an attacker unauthorized access. This led to a multi-million dollar drain across several assets, according to on-chain data and project statements.