Crypto Times Logo Black
Google News Follow Banner
  • News
    • Market
    • Bitcoin
    • Ethereum
    • Altcoins
    • Regulations & Policies
    • DeFi News
    • Blockchain News
    • Industry
  • Exclusive
    ExclusiveShow More
    Coinbase India Head Addresses Re-Entry Launch Glitches and the 12-Month Roadmap
    Coinbase India Head Addresses Re-Entry Launch Glitches and the 12-Month Roadmap
    Inside the Trump Family’s $1.2B Crypto Windfall Who Paid the Price
    Inside the Trump Family’s $1.2B Crypto Windfall: Who Paid the Price?
    MiCA Deadline Hits Top Safe Crypto Platforms for EU Users in July 2026
    MiCA Deadline Hits: Top Safe Crypto Platforms for EU Users in July 2026
    MSTR, STRC, and Michael Saylor’s Pragmatic Turn Strengthening Credit in a Volatile Bitcoin Era
    MSTR, STRC, and Michael Saylor’s Pragmatic Turn: Strengthening Credit in a Volatile Bitcoin Era
    MiCA's July 1 Deadline What It Means for Your Crypto in Europe
    MiCA’s July 1 Deadline: What It Means for Your Crypto in Europe
  • Opinion
    OpinionShow More
    Why Wall Street is Divided Michael Saylor’s Scarcity vs. Tom Lee’s Staking Empire
    Why Wall Street is Divided: Michael Saylor’s Scarcity vs. Tom Lee’s Staking Empire
    The Arthur Hayes Paradox Macro Prophet or Market Opportunist
    The Arthur Hayes Paradox: Macro Prophet or Market Opportunist?
    RBI Denies Gold Sale Amid Oil Crisis: Could It Speed Up India's Digital Rupee Push?
    RBI Denies Gold Sale Amid Oil Crisis: Could It Speed Up India’s Digital Rupee Push?
    The CLARITY Act War Starts Jamie Dimon Vs Armstrong
    The CLARITY Act War Starts: Jamie Dimon Vs Armstrong
    Is Crypto Dying, or Is Pump.fun Turning It Into an Attention Casino
    Is Crypto Dying, or Is Pump.fun Turning It Into an Attention Casino?
  • Learn
    • Explained
    • How To
    • Insights
  • Videos
  • More
    • About Us
    • Our Authors
    • Contact Us
    • Editorial Policy
The Crypto TimesThe Crypto Times
  • All News
  • Market
  • Bitcoin
  • Ethereum
  • Altcoins
  • Regulations & Policies
  • Blockchain
  • DeFi
  • Industry
  • Exclusive
  • Opinion
Search
  • News
    • Market
    • Bitcoin
    • Ethereum
    • Altcoins
    • Regulations & Policies
    • Blockchain
    • DeFi
    • Industry
    • Exclusive
    • Opinion
  • Learn
    • Explained
    • How To
    • Insights
  • Quick Links
    • About Us
    • Our Authors
    • Contact Us
    • Editorial Policy
    • AI Policy
    • Sponsored & Advertorial Policy
  • Videos
  • Glossary
Follow US
© 2026 By Crypto Times. All Rights Reserved.
Market News

Crypto Bridge Hacks Top $328M in 2026 as Cross-Chain Exploits Accelerate

Major cross-chain exploits have already drained more than $328 million in 2026, with attackers targeting bridge verification systems, validator infrastructure, and smart contract vulnerabilities across DeFi protocols.

Written By Isha Chavda - Crypto Jornalist Isha Chavda
Fact Checked by Divya Mistry Divya Mistry
Published 2026-05-18
Make The Crypto Times preferred on GoogleGoogle
Share
Crypto Bridge Hacks Top $328M in 2026 as Cross-Chain Exploits Accelerate
Show AI Summary
Hackers have stolen $328.6 million from cross-chain protocols in 2026 via eight major bridge-related hacks.
The largest hack occurred on April 18, 2026, with Kelp DAO losing $292 million to attackers who forged a fake LayerZero message.
The most recent exploit happened on May 18, 2026, with hackers draining $11.58 million from the Verus-Ethereum bridge.

The crypto industry has witnessed at least eight major bridge-related hacks so far in 2026, with hackers stealing a combined $328.6 million from cross-chain protocols, according to blockchain security firm PeckShield.

The latest wave of exploits has intensified concerns over the security of cross-chain infrastructure, which remains one of the most vulnerable sectors within decentralized finance (DeFi). The figure was confirmed following the May 18, 2026 exploit of the Verus-Ethereum bridge, which was identified as the eighth such bridge incident of the year. 

#PeckShieldAlert As of mid-May 2026, the crypto space has witnessed 8 major #bridge-related exploits, with hackers exfiltrating a cumulative $328.6M from cross-chain protocols.
The table below outlines the details of these incidents: pic.twitter.com/0xTNxIHi4b

— PeckShieldAlert (@PeckShieldAlert) May 18, 2026

Kelp DAO suffers the largest hack of 2026

The biggest exploit of the year hit Kelp DAO after attackers drained 116,500 rsETH, worth nearly $292 million, from its LayerZero-powered bridge infrastructure on April 18, 2026.

According to investigators, the attackers forged a fake LayerZero message that tricked the bridge into releasing rsETH without any legitimate deposit occurring on another chain.

After stealing the assets, the hacker reportedly used DeFi lending platforms, primarily Aave, across Ethereum and Arbitrum, to borrow over $236 million in ETH and WETH against the fake collateral.

Security firms including Cyvers and PeckShield said the attacker was funded through Tornado Cash before the exploit, indicating a planned operation. Multiple cybersecurity firms later attributed the breach to North Korea’s Lazarus Group.

According to post-incident analysis cited by security researchers, Kelp DAO paused key contracts within roughly 46 minutes, reportedly preventing an estimated additional $200 million from being stolen.

Verus-Ethereum bridge loses $11.58 million

On May 18, 2026, hackers drained nearly $11.58 million from the Verus-Ethereum bridge after exploiting flaws in its cross-chain verification process.

Blockchain security firms Blockaid and PeckShield said attackers stole 1,625 ETH, 103.6 tBTC, and nearly 147,000 USDC by bypassing source-side balance verification checks. The attacker swapped the stolen tokens into roughly 5,402 ETH shortly after the theft. 

Researchers compared the exploit to vulnerabilities seen in the 2022 Wormhole and Nomad bridge hacks. Investigators noted the exploit was caused by missing validation logic rather than compromised private keys or broken cryptography. Specifically, the bridge verified the notarized Verus state root, the Merkle proof, and the hash binding, but never checked whether the stated transfer amounts actually matched the payout. 

THORChain pauses operations after $10.8 million exploit

Cross-chain liquidity protocol THORChain temporarily halted swaps and liquidity operations after suffering a $10.8 million exploit on May 15, 2026 tied to a compromised validator node.

The attack drained assets including roughly 3,443 ETH, 36.85 BTC, 96.6 BNB, and other assets from THORChain’s Asgard vaults by exploiting weaknesses in the protocol’s GG20 threshold signature system.

Blockchain investigator ZachXBT, along with PeckShield, Arkham Intelligence, Cyvers, and Chainalysis, linked the exploit to a sophisticated laundering operation prepared weeks in advance. As The Crypto Times has reported, Chainalysis traced the attacker’s preparatory activity through Monero, Hyperliquid, and Arbitrum, beginning well before the theft.

THORChain later confirmed that no user-controlled funds were directly impacted, as the losses were limited to protocol-owned liquidity.

ZetaChain reveals multiple flaws behind april attack

ZetaChain disclosed that three separate vulnerabilities led to a $333k exploit involving its GatewayEVM smart contract at the end of April.

According to the project’s post-mortem report, attackers exploited missing access controls, unrestricted cross-chain execution permissions, and unlimited token approvals tied to internal team wallets.

The attacker reportedly routed stolen USDC and USDT across Ethereum, Arbitrum, Base, and BNB Chain before converting the proceeds into roughly 139 ETH. ZetaChain said no user funds were affected because only internal wallets were targeted.

Hyperbridge and IoTeX hit

Hyperbridge paused operations after attackers exploited weaknesses in its Token Gateway verification process, causing roughly $237,000 in losses.

According to BlockSec, the attacker submitted forged proofs that allowed unauthorized minting of nearly 1 billion fake bridged DOT tokens on Ethereum before selling them on decentralized exchanges.

Meanwhile, IoTeX confirmed a $4.3 million exploit involving its ioTube bridge after a validator owner’s private key was compromised.

The attacker allegedly minted unauthorized USDC, USDT, IOTX, and WBTC before routing funds through THORChain into Bitcoin wallets. IoTeX said the exploit was isolated to bridge contracts and did not affect its Layer 1 blockchain or consensus system.

CrossCurve exploit adds to security concerns

Cross-chain protocol CrossCurve also lost nearly $3 million after attackers spoofed cross-chain messages through an Axelar-linked contract.

According to Defimon Alerts, the exploit bypassed validation checks and triggered unauthorized token releases across multiple networks.

CrossCurve paused bridge operations immediately after the incident, while CEO Boris Povar offered a 10% bounty for the return of stolen funds.

Meanwhile, Curve Finance advised users to reassess exposure to CrossCurve-related liquidity pools following the exploit.

The recent attacks come amid a broader rise in DeFi-related exploits this year. Data from DeFiLlama shows DeFi protocols have already suffered over $20 million in losses in May 2026 alone, while April breaches exceeded $606 million.

Also Read: Kenya’s DCI Cracks Down on $431K USDT Fake Gold Scheme

Disclaimer: The information researched and reported by The Crypto Times is for informational purposes only and is not a substitute for professional financial advice. Investing in crypto assets involves significant risk due to market volatility. Always Do Your Own Research (DYOR) and consult with a qualified Financial Advisor before making any investment decisions.

Follow The Crypto Times on Google News to Stay Updated!      Google News
Google News Banner

TAGGED:Crypto HackCryptocurrency
Share This Article
Whatsapp Whatsapp LinkedIn Telegram Copy Link
Avatar photo
By Isha Chavda
Isha Chavda is a Junior Writer at The Crypto Times and a B.Com (Hons) graduate with a background in commerce. She reports on crypto news and focuses on creating content that is clear, simple, and engaging for readers. With a strong interest in content creation, she enjoys staying updated with the latest trends and turning them into easy-to-understand stories. Her work combines effective communication to make crypto more accessible and relatable.  
Divya Mistry
By Divya Mistry
Follow:
Divya Mistry is the Senior Editor at The Crypto Times. She leads the central editorial desk, overseeing the review and publication of policy analyses, investigative reports, exchange coverage, and protocol exploit stories. Her editorial remit spans digital asset markets, global exchange operations, cross-border digital asset settlements, regulatory developments, and other key developments shaping the cryptocurrency industry. Divya brings more than a decade of experience in editorial strategy, content development, public relations, marketing communications, and research. Before joining The Crypto Times, she worked across multiple sectors, including finance, technology, education, healthcare, real estate, entertainment, lifestyle, and vertical transport, contributing to both digital and print publications. Her research and content work has been featured on platforms including DNA India, Zee, Forbes, and Elevator World India. She holds a Master's degree in English Literature from the University of Mumbai. Drawing on her background in long-form publishing, research, and editorial leadership, she reviews and refines complex stories to ensure accuracy, clarity, and strong editorial standards before publication.

Latest News

Ireland Seizes Another 500 BTC From Drug Dealer's Lost Wallets, Total Worth $90M
Ireland Seizes Another 500 BTC From Drug Dealer’s Lost Wallets, Total Worth $90M
Bitcoin Climbs 6% While MSTR Surged Over 23% — Is Michael Saylor’s Plan Finally Paying Off?
Bitcoin Climbs 6% While MSTR Surged Over 23% — Is Michael Saylor’s Plan Finally Paying Off?
Ripple Founder-Gillibrand Deal Intensifies CLARITY Act Ethics Fight
Ripple Founder-Gillibrand Deal Intensifies CLARITY Act Ethics Fight
Hinkal Protocol Exploited 450+ ETH Laundered via Tornado Cash & THORChain
Hinkal Protocol Exploited: $820K Laundered via Tornado Cash & THORChain
Samsung, Dunamu Other Korean Partners Deny Open USD Ties, Testing 140-Firm Claim
Samsung, Dunamu & Other Korean Partners Deny Open USD Ties, Testing 140-Firm Claim

Find Us on Socials

You may also like

Velocity Defends Drift Rebrand After $295M Crypto Exploit

Velocity Defends Drift Rebrand After $295M Crypto Exploit

Kazakhstan Expands Crypto Market With First Exchange License

Kazakhstan Expands Crypto Market With First Exchange License

From Nasdaq Hype to 71% Crash: AVAT Treasury in Trouble

From Nasdaq Hype to 71% Crash: AVAT Treasury in Trouble

Binance Set to Enter Philippines After SEC Sandbox Approval

Binance Set to Enter Philippines After SEC Sandbox Approval

The Crypto Times Logo PNG

Providing real-time, accurate Crypto reporting. Your trusted source for Crypto News and Research.

Stay Updated

All News
Exclusive
Opinions
Learn
Videos
Glossary

Company

About Us
Our Authors
Editorial Policy
AI Policy
Advertorial Policy

Get In Touch

Contact Us
Career

Find Us on Socials

X-twitter Linkedin Telegram Youtube Instagram

© 2026 The Crypto Times | A BITROCK TECHNOLOGIES L.L.C. Company.

DMCA.com Protection Status
  • Terms and Conditions
  • Disclaimer
  • Privacy Policy
  • Cookie policy
Do Not Sell or Share My Personal Information