CrossChain Protocol CrossCurve Hacked, Losses Reach $3 Million

CrossChain Protocol CrossCurve Hit by Major Attack

CrossCurve announced late Sunday that its cross-chain bridge is under attack, with hackers exploiting a vulnerability in one of its smart contracts to steal funds across multiple networks. The estimated loss has reached $3 million.

Details of the Vulnerability Revealed

According to blockchain security team Defimon Alerts, attackers were able to forge cross-chain messages and bypass the verification process, allowing them to trigger token unlock operations. The vulnerability was found in CrossCurve’s ReceiverAxelar contract, where hackers could call the expressExecute method.

Safety Recommendations

CrossCurve has urged users to suspend all interactions with the platform until further notice to prevent additional losses. The team is working urgently to patch the vulnerability and trace the stolen funds.