Fake Bridge Messages Let Hacker Drain $815,000 From Alephium
The post Fake Bridge Messages Let Hacker Drain $815,000 From Alephium appeared on BitcoinEthereumNews.com. Alephium’s (ALPH) TokenBridge was drained of approximately $815,000 after an attacker exploited a flaw that allowed forged messages to pass through the protocol’s guardian network and authorize fraudulent token transfers. The Alephium team confirmed that blockchain security firm Blockaid was the first to detect the exploit. The Security Alliance’s SEAL_911 emergency response unit also provided assistance and responsiveness throughout the subsequent investigation. Exploit Drains $815,000 in Under 7 Minutes The attacker moved funds from the Alephium TokenBridge on both Ethereum and BNB Chain in roughly seven minutes. On Ethereum, losses included 200,967 Tether (USDT), 17,594 USD Coin (USDC), 5.18 Wrapped Ether (WETH), and 0.335 Wrapped Bitcoin (WBTC). An additional 36,750 USDT and 24.386 Wrapped BNB were removed from the BNB Chain side of the bridge. The attacker also minted 13.76 m