A major security breach has hit Orbit Bridge, a decentralized protocol that allows cross-chain transfers of various cryptocurrencies. The protocol announced that it was hacked on December 31, 2023, and that it lost millions of dollars worth of crypto assets to the attackers.
How the Hack Happened
The breach was first identified by Kgjr, a pseudonymous X user, who noticed the creation of new wallets for various crypto assets like Wrapped Bitcoin (WBTC), Tether (USDT), USD Coin (USDC), and Dai (DAI). Notably, larger transactions were not visible on the Orbit Bridge scanner, in contrast to smaller test transfers.
Looks like orbit bridge is getting drained right now, different fresh wallets for wbtc usdt usdc and dai, test tx's showup on orbit bridge scanner but bigger ones doesnt. Wallets bellow pic.twitter.com/zlUbT0HrO2
— Clueless (@Clueless_333) December 31, 2023
Officer CIA, a Web3 threat researcher, revealed that the attackers gained control of seven out of ten multisig signers, providing access to the protocol’s funds. The estimated total loss surpassed $81.5 million, encompassing $30 million USDT, $10 million USDC, $10 million DAI, 9,500 ETH worth $21.7 million, and 230 WBTC worth $9.8 million.
Looks like the attacker gained 7 out of 10 multisig signers… 👀
— Officer's Notes (@officer_cia) December 31, 2023
Blockchain security firm SlowMist suggested a vulnerability in the protocol or a compromise of the centralized server might be behind the hack. Orbit Bridge is actively collaborating with international law enforcement agencies to analyze the incident’s root cause.
Following the breach, the hackers initiated their operation with 10 ETH from crypto mixer Tornado Cash, transferring it through an intermediary address. Subsequently, they exchanged USDT and WBTC for ETH and USDC for DAI on decentralized exchanges, accumulating 26,751 ETH valued at $61.5 million and $15 million in DAI.
How Did Orbit Bridge Respond?
In response, Orbit Bridge cautioned users against falling for reimbursement scams and urged them to interact solely with the official protocol account. The bridge service was temporarily shut down, with users advised to cancel pending transactions.
Despite user frustration over communication gaps, the Orbit team is working diligently to resume normal operations.
The incident highlights the growing challenges in ensuring the security of decentralized protocols and underscores the need for continued vigilance within the crypto community.
Interested In Getting The “Learn2Trade Experience?”Join Us Here
- Broker
- Min Deposit
- Score
- Visit Broker
- Award-winning Cryptocurrency trading platform
- $100 minimum deposit,
- FCA & Cysec regulated
- 20% welcome bonus of upto $10,000
- Minimum deposit $100
- Verify your account before the bonus is credited
- Over 100 different financial products
- Invest from as little as $10
- Same-day withdrawal is possible
- Fund Moneta Markets account with a minimum of $250
- Opt in using the form to claim your 50% deposit bonus
Learn to Trade
Never Miss A Trade Again
Signal Notification
Real-time signal notifications whenever a signal is opened, closes or Updated
Get Alerts
Immediate alerts to your email and mobile phone.
Entry Price Levels
Entry price level for every signal Just choose one of our Top Brokers in the list above to get all this free.