Losses at CrossCurve underline the high risk of cross-chain bridges during periods of rising crypto attacks.
CrossCurve halted user activity after an attack targeted its cross-chain bridge. The incident forced developers to investigate a smart contract flaw. Partner protocols and and security firms issued warnings as funds were traced on-chain.
User Interactions Halted as CrossCurve Examines Contract Weakness
CrossCurve confirmed on Sunday that its cross-chain bridge was targeted by attackers. The team linked the incident to a flaw in one of the bridge’s smart contracts. Users were asked to pause all activity while developers began reviewing the issue.
Because assets are held across multiple smart contracts, moving them between networks increases risk when a single component fails.
⚠️ URGENT Security Notice
Dear users,
Our bridge is currently under attack, involving the exploitation of a vulnerability in one of the smart contracts used.
Please pause all interactions with CrossCurve while the investigation is ongoing.
We appreciate your patience and… pic.twitter.com/yfo1KvWoDd
— CrossCurve (@crosscurvefi) February 1, 2026
Curve Finance addressed its community shortly after the incident. Users with exposure to CrossCurve pools were advised to reassess their positions and decide whether to withdraw voting support. The statement urged careful judgment when interacting with external protocols during unstable conditions.
Early checks found damage limited to the bridge, with no issues detected across other protocol components. Alerts went out quickly, while the team kept access paused and tracked the movement of stolen funds.
Protocol Calls for Asset Returns After On-Chain Review
After tracing on-chain activity, the team found that funds from the exploit had moved into 10 wallet addresses. CrossCurve said it could not confirm whether those wallets belonged to the attackers and saw no clear hostile behavior at that point. Even so, the protocol acknowledged that users lost funds due to the exploit.
In response, project officials appealed directly to recipients to return the assets. The team described the transfers as improper and asked for cooperation. To support recovery efforts, CrossCurve activated its SafeHarbor WhiteHat policy, offering a reward of up to 10% of recovered funds if the rest is returned.
Details included a direct contact email for coordination. An alternative option allows anonymous returns through a designated wallet address. The team said recovered funds would be returned to affected users after review.
Moreover, CrossCurve shared a contact email to help coordinate the return of funds. A separate wallet address was also provided for those who prefer to send assets back without revealing their identity. After verification, the team said it plans to distribute recovered funds to affected users.
Recent Breaches Expose Ongoing Risks in Decentralized Finance
Crypto attacks have increased across the industry, with the CrossCurve incident adding to a growing list of breaches. Security firm CertiK recorded nearly $400 million in losses in January 2026, with more than 40 major incidents reported.
_Image Source: _X/CertiK
Cross-chain systems face a higher risk because they handle large amounts of funds and rely on complex structures. Recent incidents show how fast damage can spread once an exploit begins.
Other victims during the same period included Swapnet, which lost $13 million. Saga and Makina Finance reported losses of $6.2 million and $4.2 million. Step Finance also suffered a breach that drained several treasury and fee wallets, moving more than 261,000 SOL.
Losses across 2025 passed $1 billion, marking the worst year on record for crypto theft. The CrossCurve case adds another reminder of ongoing security gaps within decentralized finance.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Gauntlet Update on Resolv Vulnerability Handling Progress: USDC Frontier has been de-risked and will gradually restart the treasury.
Gauntlet has updated the progress on resolving the vulnerability on platform X. The USDC Frontier (v1) on the Base network has been reallocated, eliminating bad debt risk. Deposits for v1 and v2 vaults are now reopened, and Morpho will remove the warning tomorrow. The mainnet USDC Frontier (v2) vault is being restarted, and more information will be provided based on subsequent fixes.
GateNews1h ago
List of DAO updates on USR event progress: $8.4 million loan has been repaid, risk nearly fully mitigated.
The List DAO has released an update on platform X, stating that the $8.6 million loan has been repaid $8.4 million, and all positions have been redeemed at a 1:1 ratio, with no losses to users. Only $26,000 remains unpaid, and relevant users are urged to contact us as soon as possible to complete repayment.
GateNews1h ago
Singapore cracks down on cryptocurrency asset theft case, involving an amount of 8.83 million Singapore dollars.
On March 29, Singapore cracked a case of internal employee conflict involving the theft of cryptocurrency assets, with an amount of 8.83 million Singapore dollars at stake. Three defendants, dissatisfied with their dismissal, illegally hacked into their former employer SafeX's account, stole cryptocurrency, and laundered money. Zhang Xinghua has pleaded guilty and received a two-year sentence, while one of the other two has fled.
GateNews2h ago
US crypto firm Goliath Ventures files for bankruptcy reorganization, accused of a $328 million Ponzi scheme
Florida-based crypto company Goliath Ventures has filed for Chapter 11 bankruptcy reorganization, accused of a $328 million Ponzi scheme, with over 2,000 investors affected. The former CEO has been arrested for telecom fraud and money laundering, with funds misappropriated to pay returns to early investors and for lavish spending.
GateNews17h ago
LiteLLM hacking incident: 500,000 credentials leaked, cryptocurrency wallets may be stolen, how to check if you're affected?
LiteLLM has been targeted by a supply chain attack, resulting in the leak of hundreds of gigabytes of data and 500,000 credentials, affecting over 20,000 code repositories. Hackers exploited vulnerabilities in Trivy to successfully implant malicious code and steal sensitive information. It is necessary to strengthen supply chain security and access control measures to prevent similar attacks.
区块客22h ago
Circle has unfrozen two hot wallets again, bringing the total number of unfrozen wallets to 5.
Gate News Report, on March 28, on-chain detective ZachXBT tweeted that Circle had unfrozen ckUSDC (Dfinity bridge) and two other hot wallets with addresses starting with 0x00e a few hours ago. As of now, 5 out of the 16 hot wallets previously mentioned have been unfrozen. ZachXBT stated that once the New York civil case is unsealed, he will publicly name the plaintiffs, experts, and all other relevant parties in the case.
GateNews03-28 05:41
