TechFlow News: On February 2, according to The Block, CrossCurve—a cross-chain liquidity protocol formerly known as EYWA—confirmed that its cross-chain bridge had been attacked. Hackers exploited a smart contract vulnerability to steal approximately $3 million. Security analysis indicates that the attackers bypassed gateway validation in the ReceiverAxelar contract and sent forged cross-chain messages, triggering unauthorized token unlocking in the PortalV2 contract.
CrossCurve has issued an announcement on social media urging users to suspend all interactions with the protocol. Security expert Taylor Monahan stated that this vulnerability resembles the 2022 Nomad cross-chain bridge hack, which resulted in the theft of $190 million.
Add to Favorites
Share to Social Media
