Bybit

Phase A — Understand the business

Lens 1 · Company Overview

What it is. Bybit is the world's #2 centralized crypto exchange (CEX) by trading volume, founded in 2018 by Singaporean entrepreneur Ben Zhou and bootstrapped — no traditional VC rounds. Headquarters relocated Singapore → Dubai (UAE) in 2022. It serves 80M+ registered users across 181 countries as of end-2025, up from ~50M entering 2025.

How it makes money — derivatives-first. Bybit is built around derivatives trading first, with spot, Earn, copy trading, bots and Web3 tools layered on top. The revenue engine is transaction fees on a tiered maker-taker model:

• Perpetuals/futures (the core): non-VIP ~0.055–0.06% taker / 0.01–0.02% maker.
• Spot: ~0.10% maker & taker non-VIP.
• Ancillary: Earn (yield product spread), copy-trading profit share (10–12% of follower profit to master traders, Bybit takes a cut), NFT marketplace, Buy-Crypto fiat ramp, and a TradFi Perpetuals line launched 2026 (TSLAUSDT, GOOGLUSDT, tokenized gold — 24/7 synthetic exposure to equities/commodities).

Key products. USDT/USDC/inverse perps, USDC options, leveraged tokens, spot (497 coins / 665 pairs), derivatives (859 pairs), Bybit Earn, Web3 Seed-Phrase Wallet (self-custody; Cloud & Keyless wallets decommissioned 2025), copy trading, trading bots, NFT marketplace, fiat on-ramp.

Main customers. Predominantly retail and prosumer derivatives traders in emerging markets (Asia ex-China, Eastern Europe, LatAm, MENA), plus a growing institutional/VIP tier. Explicitly excluded jurisdictions: US, Chinese Mainland, Hong Kong, Singapore, Canada, North Korea, Cuba, Iran, and various sanctioned regions — i.e. it has voluntarily or by force walked away from the entire developed-market regulated retail base. customers.csv empty.

Suppliers / counterparties. Market makers and liquidity providers (Wintermute, DWF Labs surfaced as partners during hack recovery), custody/HSM vendors, fiat-rail banking partners (the "MyBank" initiative), blockchain protocols it integrates for Web3, and proof-of-reserves auditor Hacken.

Competitors. Binance (#1), OKX, Coinbase (US-regulated), Gate, MEXC, Bitget, HTX — and increasingly the on-chain perp DEXs led by Hyperliquid (see Lens 3 & 13).

Bottom line (Lens 1): A derivatives-native, founder-controlled, bootstrapped exchange that scaled to #2 globally by being aggressive on product and geography — explicitly trading regulatory access in developed markets for reach and speed in the rest of the world.

Lens 2 · Supply Chain

A CEX's "supply chain" is its liquidity → matching engine → custody → fiat/settlement → user value chain. Named stakeholders along Bybit's chain:

• Upstream liquidity (inputs): Professional market makers and OTC desks supplying order-book depth — Wintermute, DWF Labs, Galaxy Digital, FalconX all surfaced as Bybit counterparties during the Feb-2025 hack recovery. These are the firms whose quotes make Bybit's perps tight.
• Matching/infra layer (the company): Bybit's own matching engine — claims 3.5M transactions/sec, ~200B daily orders, 99.99% uptime, sub-10ms response (vendor-reported, unaudited). Cloud infra unspecified publicly.
• Custody chokepoint (THE single-source dependency that broke): Bybit ran multi-sig cold-wallet custody through Safe{Wallet} (app.safe.global) — the exact link in the chain that was compromised in Feb 2025 (see Lens 5/10). Post-hack it cites "enhanced cold wallet and HSM security systems" and "regulated custody frameworks", implying a custody-stack rebuild, but the specific vendor mix is not disclosed.
• Proof-of-reserves verification: Hacken — monthly PoR audits since June 2024. This is the trust-attestation supplier.
• Fiat/settlement rails: Banking partners via the "MyBank" / broader fiat-connectivity initiative bridging TradFi banking to blockchain liquidity; specific banks undisclosed — a known structural weak point for offshore exchanges (banking access is the chokepoint regulators squeeze).
• Distribution (downstream): Direct app/web + an affiliate/referral and copy-trading "master trader" network that effectively resells access.
• End customer: Retail/prosumer derivatives traders, 80M+ accounts.

Chokepoints & single-source dependencies: (1) Third-party multi-sig custody (Safe) — proven catastrophic single point of failure; (2) fiat banking access — structurally fragile for a non-US-regulated entity; (3) liquidity-provider concentration — a handful of MMs underpin perp depth; (4) regulatory licence per jurisdiction — each market is its own permission gate (Lens 10). supply-chain.md missing — chain mapped web-only.

Bottom line (Lens 2): The chain's fatal flaw was already realised — outsourced custody. The remaining live chokepoint is banking/fiat rails, the lever every regulator uses to throttle offshore exchanges.

Lens 3 · Competitive Advantages (moats)

Where Bybit genuinely wins:

• Derivatives execution & product breadth — deep perp liquidity on majors, fast UX, broad pair coverage (859 derivative pairs), and a reputation among active leverage traders for a strong matching engine.
• Brand resilience / "didn't break the buck" — the single strongest moat it demonstrated: it took the largest hack in history ($1.5B) and kept withdrawals open, stayed solvent, and saw $3.7B of inflows the following month. That is a brand-equity event most exchanges would not survive. Trust, in this industry, is the moat — and Bybit proved its was real.
• Speed/aggression — first-mover on new listings, copy trading, TradFi perps, and a willingness to ship product fast.

Where the moat is thin / eroding:

• No structural lock-in. Crypto traders are notoriously multi-homed and fee-sensitive; switching costs are near zero. There is no network effect Bybit owns that Binance/OKX/Hyperliquid don't also have.
• Bargaining power is weak on both sides. Over liquidity providers (a few MMs it depends on) and over users (who can leave in one click). It is a price-taker on fees — the whole CEX category is in a fee race to the bottom against zero-fee/low-fee on-chain venues.
• The regulatory moat runs the wrong way. Coinbase's moat is being regulated (US-listed, licensed). Bybit's "moat" is avoiding regulation — which is an anti-moat: it works until a jurisdiction closes, and they are closing (Lens 10).

positioning.md / bottlenecks.md missing — assessed web-only.

Bottom line (Lens 3): The real moat is brand trust earned by surviving the hack, plus derivatives depth. But there is no durable structural moat — no switching costs, no owned network effect, weak bargaining power, and a regulatory posture that is a liability rather than an asset against regulated incumbents (Coinbase) and trust-minimised challengers (Hyperliquid).

Lens 4 · Segments

Hard data caveat: segments.csv is empty. Bybit publishes no audited segment P&L (private). The breakdown below is directional /, not reported figures — do not treat as sourced segment accounts.

By product (revenue mix, directional):

• Derivatives (perps/futures/options) — the dominant majority. Bybit is "derivatives-first"; daily derivatives volume ~$6.0B vs spot far smaller. Derivatives is plausibly the large majority of trading-fee revenue ``.
• Spot — secondary but strategically grown. Bybit climbed to #2 in spot share (~11.5% in 2024; 9.5% Dec-2025) — a deliberate diversification away from pure derivatives.
• Earn / copy trading / bots / NFT / Web3 / fiat ramp — small but rising, the "beyond trading" layer (Lens 1).

By geography: Concentrated in Asia (ex-China), Eastern Europe, MENA, LatAm; zero developed-market regulated retail (US/Singapore/HK/Canada excluded; Japan exiting 2026). Geographic mix is unaudited — n/a — private, not disclosed for hard splits.

Trend & cause: Direction of travel is deceleration in 2026 alongside the whole sector — total CEX volume $17.9T in Q1 2026, −32% QoQ and −42% from the Q3-2025 cycle peak of $31.0T, driven by the Oct-2025 tariff-shock $19B liquidation cascade that impaired market depth and leverage appetite. Within that, Bybit's derivatives rank slipped to #3 behind Binance and OKX ($376B Q3-2025 derivatives vol).

Bottom line (Lens 4): Mix is derivatives-heavy with a deliberately built #2 spot business; geographically it is an emerging-markets exchange with no developed-market regulated footprint. Both the sector and Bybit's relative derivatives position decelerated into 2026.

---

Phase B — Measure performance

+private overlay swaps Phase B's earnings lenses for funding/traction lenses. There is no earnings print — there are funding events, volume prints, and the hack.

Lens 5 · Funding & valuation trajectory (+private swap — replaces "Earnings Result")

Funding history: Bybit was bootstrapped by Ben Zhou — no disclosed venture rounds. This is unusual and material: unlike Binance (also founder-led) and Coinbase (VC→IPO), Bybit has no priced VC round to anchor a valuation, no crossover-fund mark, and no cap-table syndicate to read IPO-proximity off. There is no 409A, no preferred round, no S-1 — n/a — private, not disclosed.

Valuation: No credible private valuation is publicly sourced. Ben Zhou's personal net worth is estimated at ~$45.5M (2026) — strikingly modest for the founder-controller of the #2 exchange, which means either the estimate excludes his (illiquid, unmarked) Bybit equity or the market is not ascribing Binance-scale equity value to a bootstrapped offshore exchange. Either reading is a flag: the equity is unmarked and illiquid. n/a for enterprise value.

The defining "print" — the Feb-2025 hack (the balance-sheet stress test):

• 21 Feb 2025: Lazarus Group (North Korea, FBI-confirmed) stole ~400,000+ ETH/stETH ≈ $1.5B via a Safe{Wallet} supply-chain compromise — the largest crypto theft on record.
• Solvency response: Bybit kept withdrawals open, declared client funds 1:1 backed, and within 48 hours raised ~$1.23B in ETH via bridge loans, whale deposits and OTC; closed the full ETH gap within 72 hours via Galaxy Digital, FalconX, Wintermute, plus Bitget, MEXC and DWF Labs.
• PoR confirmation: Hacken-verified PoR on 26 Feb 2025 showed reserve ratio >100% despite the breach.
• Aftermath: ETH fell ~24% on the news; Bybit saw $3.7B net inflows in March 2025 and launched a $140M bounty (10% of recovered assets).

Revenue — the disclosure gap (handle with care): No audited revenue exists. Public estimates diverge by ~6×: one analyst says ">>$1.5B/yr," another models ~$269.5M. Do not pick one. A defensible bottom-up frame:

2025 total volume ≈ **$1.5T**. Apply a blended take rate. Derivatives dominate at ~**0.02–0.03% effective** (mostly taker, after VIP discounts); spot ~0.05–0.08% effective. A blended **~0.02–0.025%** on $1.5T → **~$300M–$375M gross trading-fee revenue**. Adding Earn/copy/listing/fiat-ramp and funding-rate capture could push total revenue toward the **$0.4B–$0.7B** range. **This is arithmetic, not a disclosure** — the true number is unknown and could be materially higher if effective take rates or non-trading revenue are larger..

Bottom line (Lens 5): The "earnings" story is (a) no audited financials, no priced valuation, bootstrapped — so equity is unmarked and illiquid; and (b) the hack, which functioned as the ultimate solvency stress test, and Bybit passed it — it covered a $1.5B hole in 72 hours and grew users through it. That survival is the single most important fact in this dossier.

Lens 6 · Founder & narrative sentiment trend (+private swap — founder interviews, not earnings calls)

No earnings calls exist (private). The proxy is Ben Zhou's public messaging trajectory across 2026 conference circuit:

• Consistent thesis (the recurring phrase): "Exchanges that stay pure trading venues will get left behind" and "the future of exchanges lies beyond trading". Zhou is pivoting the narrative from "crypto derivatives exchange" to "full financial-infrastructure provider" — tokenization, stablecoins, AI as the three pillars.
• 2026 roadmap focus: RWA tokenization (tokenized equities & commodities), stablecoin settlement for institutions, embedded AI agents, regulated custody, MyBank fiat rails. At the Goldman Sachs APAC FinTech conference he argued "tokenization will reshape global finance faster than expected."
• Tone shift post-hack: Markedly more emphasis on "institutional-grade governance and controls," "enhanced cold wallet and HSM security," "compliance monitoring," "risk segregation" — a clear, deliberate trust-and-compliance repositioning after Feb 2025. The thing they started saying loudly: security and regulation. The thing they say less: pure volume/leverage bravado.

Sentiment read: Confident, expansionary, and consciously legitimising. Zhou is playing offence (super-app / RWA / institutional) while patching the trust wound. The risk in the narrative: it is the same "super-app beyond trading" story every CEX is now telling (Binance, OKX, Coinbase all claim it) — differentiation is thin.

Bottom line (Lens 6): Founder narrative is coherent and ambitious — be the tokenized-finance infrastructure layer, not just a casino — but it is a consensus pivot, and execution (not vision) will decide it. The post-hack pivot to "regulated, institutional, secure" is genuine and necessary.

Lens 7 · Cap table & secondary marks (+private swap — replaces "Comps")

Cap table: Founder-controlled, bootstrapped — no disclosed external equity syndicate. There are no tier-1 VCs, no strategics, and critically no crossover funds (Fidelity / T. Rowe / Coatue) on the cap table — the absence of a crossover mark is itself a tell: there is no IPO-proximity signal in the ownership. No mutual-fund markups/markdowns to read. No secondary-market marks are publicly sourced. n/a — private, not disclosed for cap-table detail and secondary marks.

Public-market comps (for context, since no private comps exist): The only clean public pure-play CEX comp is Coinbase (COIN):

Read-through: Coinbase trades at ~7× revenue / ~41× EV/EBITDA as a regulated, US-listed, compliance-moat exchange. A private, offshore, bootstrapped exchange with a fresh $1.5B-hack scar and no developed-market access would rationally trade at a steep discount to those multiples if/when it lists — the comp ceiling is informative, not a valuation. Do not fabricate a Bybit multiple.

Bottom line (Lens 7): No syndicate, no crossover mark, no secondary marks — zero IPO-proximity signal from the ownership. Coinbase's ~$43B / ~7× revenue is the public ceiling for a regulated exchange; Bybit would list (whenever) at a discount to it.

Lens 8 · Stock-Price Catalysts → Funding/Product/Trust events (+private adaptation)

No stock exists, so the analogue is events that moved Bybit's volume, user base, and trust materially:

• Feb 2025 — the $1.5B hack (the −/+ event): Triggered ETH −24% and a sector shock; Bybit's own response (72-hr recovery, withdrawals open) turned a near-fatal event into a brand-positive trust proof, with $3.7B March inflows. The single biggest catalyst in its history.
• May 2025 — MiCA authorization (Austria FMA): Became an EU-regulated crypto-asset service provider; rolled French users onto Bybit EU and came off the AMF blacklist (Feb 2025). The legitimising counter-catalyst.
• 2025 — regulatory exits/restrictions: France suspension→resumption (EU entity), India suspension→staged return after FIU-IND registration, Japan exit (announced, effective 2026) after FSA warnings, Philippines registration halt, Malaysia enforcement. Each is a market-access catalyst, mostly negative on reach.
• Dec 2025 — spot-volume #1 spike on the NIGHT trading surge (>$9.2B 24h spot) — shows Bybit can still top the tape on the right narrative.
• Q1 2026 — sector-wide deceleration: volume −32% QoQ; Bybit derivatives slip to #3.
• 2026 — leadership churn: Co-CEO Helen Liu departure (eff. 30 Apr 2026) + earlier CTO ("Rockman") exit — governance-signal catalyst (Lens 9).

Pattern read: What moves Bybit is (1) trust events (hack/recovery, PoR), (2) regulatory access (MiCA up, Japan/US down), and (3) sector-wide leverage/volume cycles. Idiosyncratic security and regulatory news dominate; it is highly beta to the broader crypto liquidity cycle.

Bottom line (Lens 8): Trust and regulatory access are the swing factors. The hack recovery was a positive surprise; the 2026 leadership churn and market-access losses are the live negatives.

---

Phase C — Judge people & books

Lens 9 · Management

• Ben Zhou — Co-Founder & CEO (founder archetype). Singaporean entrepreneur, founded Bybit 2018, bootstrapped it to #2 globally. Track record: built a top-2 exchange from zero with no VC — genuinely impressive operating execution; and personally led the 72-hour hack recovery, communicating transparently throughout (widely credited for steady crisis management). Skin in the game: founder-controller, presumably large equity (unmarked); reported personal net worth only ~$45.5M — modest, implying his wealth is locked in illiquid Bybit equity. Archetype: classic aggressive crypto founder-operator, now consciously maturing toward institutional/regulated posture (Lens 6).
• Helen Liu — Co-CEO, DEPARTING 30 Apr 2026. Joined 2020 (VP HR → VP Marketing/Chief of Staff → COO 2022 → Co-CEO 2025), leaving after 5 years "to pursue entrepreneurial ambitions" — no successor named.
• CTO ("Rockman") — departed (reported alongside Liu's elevation).

Capital-allocation history: Bootstrapped → reinvested into product/geography/users. The most consequential capital act was emergency, not strategic: closing the $1.5B hack gap with bridge loans + partner support. No buybacks/dividends (private). Reinvestment-led; no public ROIC.

Red flags (governance):

• Concentrated C-suite churn right after the largest hack in history — losing both the Co-CEO and the CTO within ~a year of a $1.5B custody failure, with no named successor, is a real governance/continuity flag. Benign readings exist (Liu genuinely wants to found something; CTO accountability post-hack), but the concentration of senior departures around a security catastrophe warrants weight.
• No independent board / no audited financials disclosed — typical for a private offshore exchange, but it means trust rests on the founder + Hacken PoR, not on governance infrastructure.
• Founder-controller with no external equity discipline — upside (decisive, fast) and downside (no check on the controller).

Bottom line (Lens 9): Founder execution is a strength; founder-dependence + post-hack C-suite churn with no succession is the risk. Zhou earned credibility in the crisis; the org around him just got materially thinner at the top at the worst possible moment.

Lens 10 · Forensic Red Flags & Regulatory

Accounting/forensic (limited by privacy): With no audited financials, no 10-K, no segment P&L, standard forensic income-statement/balance-sheet analysis cannot be performed — which is itself the headline forensic flag for a private exchange: the only solvency evidence is the monthly Hacken Proof-of-Reserves (reserve ratio >100%, 32 assets, 100–124% collateralization; 107% BTC / 119% ETH). PoR is a point-in-time assets attestation — it does not verify liabilities completeness, off-balance-sheet leverage, intercompany loans, or the terms of the hack-recovery bridge loans (were they repaid? at what cost? n/a — not disclosed). Cash-flow vs earnings divergence, receivables/inventory, SBC — all n/a — private.

Regulatory findings:

• SEC (EDGAR LR/AAER): 0 findings — Bybit has no CIK, is not an SEC registrant, no EDGAR enforcement search possible.
• Non-SEC enforcement / legal (web):
• United States — blocked. As of 2026 Bybit is blocked from operating in the US. (Note: a 2023 CFTC action against Bybit for unregistered derivatives offerings is the historical backdrop to US exclusion — broadly consistent with the "blocked from US" status.)
• Japan — exiting 2026 after repeated FSA warnings (Nov 2024, Mar 2023) for unregistered operation.
• France — suspended (Jan 2025) → off AMF blacklist (Feb 2025) → resumed via EU entity.
• India — suspended (Jan 2025) → staged return after FIU-IND registration.
• Malaysia — securities-regulator enforcement for unregistered operation.
• Philippines — halted new registrations.
• EU — POSITIVE: MiCA authorization via Austria FMA (May 2025).
• AML / OFAC — indirect but serious: Lazarus laundered Bybit's stolen funds through the OFAC-sanctioned, DOJ-seized Russian exchange Garantex (operators charged Mar 2025). No direct OFAC penalty against Bybit itself is sourced, but the episode put Bybit's flows under intense AML scrutiny and ties it to a state-sponsored laundering network.
• Class action: none found against Bybit re: the hack or AML.
• No material direct SEC/AAER finding; the regulatory profile is a patchwork of jurisdiction-by-jurisdiction restriction (US/Japan out, EU in) — verified via SEC EDGAR EFTS (0 hits, no CIK), web search, and public reporting as of 2026-06-30.

Bottom line (Lens 10): The forensic verdict on a private exchange is "trust the PoR or don't" — and PoR proves assets, not the full liability/leverage picture. The regulatory profile is the bigger flag: structurally locked out of the US and exiting Japan, a global game of regulatory whack-a-mole, with an indirect but real AML/sanctions linkage via Garantex. EU/MiCA is the one clean positive.

---

Phase D — Project & stress-test

Lens 11 · IPO-readiness & path-to-tradeable (+private swap — replaces "Forward Projection")

Is Bybit tradeable / IPO-ready? No — and not close. Building the readiness assessment from scratch (Bybit absent from private-watch.json):

• Readiness score: ~1–2 / 5 on the private-watch scale (1=early/seed … 4=pre-IPO/secondary-active … 5=S-1 imminent). Rationale: no priced funding round, no crossover investors, no audited financials, no disclosed S-1 prep, and — decisively — locked out of the US, the only deep IPO market for a crypto exchange (the Coinbase template). A US listing is effectively foreclosed; a non-US listing (UAE/HK/Singapore) is conceivable but none is signposted.
• Milestones that would unlock an S-1 / tradeable equity:

1. Audited financials from a credible firm (the gating item — none today).
2. A clean, durable regulatory home with a path to a listable jurisdiction (MiCA/EU is a start; a US settlement-and-re-entry, à la a future Binance-style resolution, would be transformative but is not visible).
3. A priced primary round or large secondary establishing a mark (none exists — the bootstrapped structure means there is literally no valuation anchor).
4. C-suite stabilisation — fill the Co-CEO vacancy and CTO seat post-churn (Lens 9).
5. Distance from the hack — a multi-year clean security record to retire the Feb-2025 scar.

• Estimated window: No credible near-term IPO window. `` Earliest plausible tradeable event is multi-year (3Y+) and contingent on the milestones above; more likely Bybit stays private indefinitely (Binance has, profitably). A secondary-market liquidity event (insider/employee secondaries) is more plausible than a primary IPO, but none is sourced.
• Forecast tracking: No Brier forecast logged — forecast.ts create skipped per --watchlist rules (no fiscal-EPS line for a private, no committed base case worth scoring).

Write-back note: Bybit is not in research/private-watch.json and this is the --watchlist breadth loop (wave boundary forbids editing watchlist.json). I am not writing a new private-watch entry here. Recommendation for a later conversational pass: add bybit to private-watch.json with beat: crypto, stage: private, ipo_readiness: 1–2, lead_investors: "none — bootstrapped", catalyst: "audited financials + listable-jurisdiction path; US re-entry the gating item", dossier: companies/bybit/deep-dive-2026-06-30.md.

Bottom line (Lens 11): Readiness ~1–2/5. The IPO is the only liquidity event, the US is foreclosed, there is no valuation anchor, and the path is 3Y+ if it happens at all. Most likely outcome: Bybit stays private. This is the core reason the position is WATCHING, not BULLISH — there is nothing to own.

Lens 12 · Bull vs Bear

Bull case. Bybit is the #2 crypto exchange that proved its trust the hard way — it absorbed the largest hack in history and grew through it ($3.7B March inflows, users 50M→80M in 2025). It is founder-controlled, bootstrapped (no dilution, no VC overhang), and plausibly highly profitable on a ~$1.5T volume base. The "beyond-trading" pivot (RWA tokenization, stablecoin settlement, embedded AI, MyBank fiat rails) positions it for the tokenized-finance wave Zhou (and Goldman's conference) are betting on. MiCA authorization gives it a regulated EU beachhead. If crypto enters another bull cycle, a deep-derivatives, multi-product, trusted #2 exchange is a prime beneficiary with massive operating leverage.

Bear case (2–3 permanent-impairment risks).

1. Structural derivatives erosion to on-chain. Hyperliquid commands 70–80% of on-chain perp DEX volume ($208B/month) and its execution on majors has caught up to Bybit's. Self-custody + no-KYC + lower fees + on-chain transparency is a secular pull away from custodial CEXs precisely in Bybit's core product. This is the existential one.
2. Regulatory boxed-in. Locked out of the US (the only deep capital market), exiting Japan, no Singapore/HK/Canada — a shrinking addressable map of regulated jurisdictions, while Coinbase owns the regulated lane. The "avoid-regulation" model is a depreciating asset.
3. Trust/custody tail risk + governance thinning. It already had the worst-case custody event; a second would likely be fatal — and the C-suite just thinned (Co-CEO + CTO out) with no succession right after that event. Plus the opacity itself (no audited financials) is a permanent discount.

Pre-mortem (18 months out, thesis broke — what happened?): Crypto volumes stayed depressed post the Oct-2025 deleveraging; perp DEXs (Hyperliquid/Aster) took another leg of Bybit's derivatives share; another jurisdiction (or an AML action tied to the Garantex flows) forced a retreat; the leaderless post-Liu org fumbled the RWA/super-app execution; and with no IPO and no valuation anchor, there was simply nothing for an outside investor to have owned.

Are multiples too high? No multiple exists (private). The relevant discipline is that Coinbase — regulated, listed, profitable — trades ~7× revenue / ~41× EV/EBITDA; a private, offshore, recently-hacked, US-excluded exchange deserves a steep discount to that, and there's no liquid way to express the view anyway.

Contrarian view (what the market refuses to see): The consensus crypto narrative treats CEXs as the durable rails. The contrarian read is that the most defensible derivatives venue of this cycle is on-chain (Hyperliquid), not the custodial #2 — and that Bybit's real, underpriced asset isn't its order book but its brand-trust + 80M-user distribution + EU licence, which make it an acquisition/merger or RWA-distribution target more than a standalone IPO story.

Bottom line (Lens 12): Bull = trusted, profitable, multi-product #2 riding tokenization; Bear = secular on-chain derivatives erosion + regulatory box-in + post-hack governance thinning + total illiquidity/opacity. The bear's structural points (Hyperliquid + US lockout) are the heavier weight.

Lens 13 · Devil's Advocate (short-seller)

Dismantling the bull case as a skeptic:

• What structurally breaks the money machine: Bybit makes money on derivatives trading fees in a fee-race-to-the-bottom, in a product (perps) that is migrating on-chain. Hyperliquid already runs ~75% of on-chain perp volume with caught-up execution and lower fees. Bybit's core profit pool is being commoditised and disintermediated simultaneously.
• Revenue concentration & what happens if it shifts: Revenue is concentrated in (a) derivatives and (b) a globally restricted, emerging-market retail base. If leverage appetite stays suppressed (post-Oct-2025) or one more big jurisdiction closes, the top line is exposed. Volume already −32% QoQ in Q1 2026.
• Why the moat is weaker than bulls think: No switching costs, multi-homed fee-sensitive users, no owned network effect, weak bargaining power both ways, and a "moat" (regulatory avoidance) that is actually a liability. The only real moat — brand trust — is one hack away from zero, and they've already used up their one "miraculous recovery."
• Most dangerous underestimated competitor: Hyperliquid — bulls frame CEX vs CEX (Binance/OKX); the real threat is the architecture shift to self-custodial on-chain perps. Also Coinbase, which owns the only thing Bybit can't have: regulated US access + a listed currency.
• Worst capital-allocation / governance moves: Outsourcing custody to a third-party multi-sig (Safe) that got supply-chain-compromised for $1.5B — the single worst risk decision in the company's history. Plus opacity (no audited financials) and post-hack C-suite exits with no succession.
• Assumptions that must hold for any "price": Crypto volumes re-accelerate; perp DEXs don't keep taking share; no further regulatory closures; no second security event; the leaderless-at-the-top org executes a hard super-app/RWA pivot; and somehow a liquidity event materialises despite US lockout. That's a lot of ands.
• Valuation if growth disappoints 20–30%: On a ~$0.3–0.7B revenue estimate, a 20–30% volume decline (already partly underway) compresses an unmarked, illiquid private equity further toward an even steeper discount to Coinbase's ~7× revenue — and there's no market to sell into.
• Single scenario that permanently impairs: A second major custody/security breach, or a US/global AML action tied to the Garantex-laundered flows that severs banking/fiat rails. Either would break the trust-and-access foundation the whole business rests on. Plausibility: moderate — non-trivial given the threat surface and the demonstrated targeting by a nation-state actor.

Bottom line (Lens 13): The short case is structural, not cyclical: derivatives migrating on-chain (Hyperliquid), a regulatory box closing (US/Japan out), a trust asset that's already been spent once, and total opacity/illiquidity. The bull needs many things to go right at once.

Lens 14 · Management Questions (ordered by information value)

1. Will you publish independently audited financial statements (revenue, EBITDA, leverage, off-balance-sheet exposures)? If never, why should anyone value the equity above a deep opacity discount? (Highest VOI — the entire valuation hinges on this.)
2. What is your realistic path back into the United States — settlement terms, timeline, cost — and is a US-listable jurisdiction part of any IPO plan, or do you intend to stay private indefinitely?
3. Hyperliquid and on-chain perp DEXs now run ~75% of on-chain perpetual volume with execution at parity on majors. How do you defend the derivatives profit pool from disintermediation — and would you build/acquire your own on-chain perp venue?
4. Post-hack: who replaces Helen Liu as Co-CEO, who is the permanent CTO, and what is the succession/board-governance plan? Why did both depart within a year of the breach?
5. Exactly what changed in custody architecture after the Safe{Wallet} compromise? Have you eliminated third-party multi-sig single points of failure, and who audits it?
6. What were the terms of the $1.5B hack-recovery bridge loans/OTC support — amounts, lenders, cost, and are they fully repaid? What was the real P&L hit?
7. What is your blended effective take rate, and how is it trending as fees compress across the industry?
8. What share of revenue is derivatives vs spot vs Earn/copy/Web3/fiat, and how concentrated is volume in your top jurisdictions?
9. MyBank / fiat rails: which banking partners, in which jurisdictions, and how do you de-risk the banking-access chokepoint that regulators use to throttle offshore exchanges?
10. The RWA/tokenization pivot is the same story Binance, OKX and Coinbase are all telling. What is Bybit's specific, defensible edge in tokenized equities/commodities settlement?
11. How exposed are you to AML/sanctions risk from the Garantex-laundered hack proceeds, and what enhanced controls have regulators required?
12. What is your capital position and burn through a prolonged low-volume environment like Q1 2026 (−32% QoQ)?
13. Founder concentration: what governance checks exist on a controller with no external equity discipline, and would you take outside capital to establish a valuation mark?
14. What is your stablecoin strategy — issue your own, or settle on others' — and how does it interact with the RWA and institutional-custody ambitions?
15. If a credible acquirer offered to buy Bybit, at what the strategic value of the 80M-user base + EU licence would justify, would you sell — i.e. is the end-game IPO, indefinite private operation, or M&A?

---