比特币橙子Trader
比特币橙子Trader|Jun 22, 2026 03:31
"The security myth of Ethereum L2 has been shattered once again. The ERC20 Vault deployed by Taiko on Ethereum mainnet suffered a devastating attack, with hackers using fake proofs to deceive the mainnet and draining approximately $1.7 million in bridged funds. The hacker's attack method was both crude and deadly: The vulnerability lies in the cross-chain bridge's 'source signal verification mechanism.' Normally, when you bridge back to the mainnet from L2, the mainnet must confirm that a legitimate `MessageSent` event occurred on L2. But the hacker directly forged a set of cross-chain message proofs. Without triggering any events on L2, the Ethereum mainnet foolishly accepted the fake proofs and released all the assets in the vault. This is essentially like printing a fake check at home and successfully withdrawing real money from Ethereum mainnet's vault. The hacker is moving fast—about $199,000 (1.99 million tokens) has already been deposited into MEXC, likely for laundering." #Ethereum #L2 #CryptoSecurity #Taiko #DeFi
+5
Mentioned
Share To

Timeline

HotFlash

APP

X

Telegram

Facebook

Reddit

CopyLink

Hot Reads