Gravity Bridge, a decentralized blockchain facilitating cross-chain transfers between Ethereum and Cosmos, was reportedly drained of roughly $5.4 million, prompting validators to halt the bridge.
Onchain analyst Specter first flagged the weird outflows in a Saturday post on X, revealing that the bridge contract key might have been compromised. “It seems the Gravity Bridge contract key might have been compromised, ensuing within the theft of $5.4M,” Specter wrote.
Safety agency PeckShield additionally confirmed the exploit in a submit, breaking down the stolen property as roughly $4.3 million in USDC (USDC), 274 Wrapped Ether (WETH) value roughly $553,000, $434,000 in USDt (USDT) and 14.164 PAX Gold (PAXG) tokens value about $64,000.
Supply: PeckShield
PeckShield reported {that a} portion of the haul had already been laundered by means of instant-swap service ChangeNow and thru Binance, whereas the theft pockets was nonetheless holding round 2,102 ETH value roughly $4.23 million on the time of its report.
Associated: StakeDAO exploit creates 5.4 trillion vsdCRV but nets only $91K
Gravity Bridge acknowledges assault
Gravity Bridge acknowledged the incident on X with out detailing what went unsuitable. “There was an unlucky incident on Gravity,” the crew wrote, including that validators “ought to halt their validators and orchestrators whereas this incident is being investigated.” In a follow-up submit, the crew confirmed the bridge had been halted.
Gravity Bridge permits tokens to maneuver freely in each instructions, from Ethereum to Cosmos wallets and DEXs like Osmosis, and from Cosmos-based blockchains again to Ethereum platforms like Uniswap. In contrast to bridges that depend on centralized multi-signatures or personal node teams, it makes use of its full validator set to authorize transfers, making it one of many extra decentralized bridge designs within the area, according to its web site.
Gravity Bridge’s native token is Graviton (GRAV), utilized by validators to safe the bridge. The token is at present buying and selling at $0.0007053, down 4% over the previous day, according to knowledge from CoinMarketCap.
Associated: ‘All DeFi unsafe’ claim sparks AI security debate after April hack surge
Bridge exploits are spooking establishments
As Cointelegraph reported, JPMorgan analysts have flagged bridge security as a significant problem in an April analysis word, questioning whether or not DeFi can scale to satisfy institutional demand. The priority comes amid the current Versus-Ethereum bridge assault, which was the eighth main bridge exploit of 2026, with cumulative losses throughout these incidents reaching $328.6 million.
Following the KelpDAO breach in Aprilwhich drained roughly $290 million and was attributed to North Korea’s Lazarus Group, whole worth locked throughout DeFi fell from practically $100 billion to round $86 billion in simply two days, with outflows hitting swimming pools that had no direct publicity to the compromised property.
Asia Specific: North Korea denies crypto hacks, Upbit’s bank tests Ripple
