2 August 2022

Nomad bridge drained of nearly $200 million in one of the largest DeFi hacks


Nomad bridge drained of nearly $200 million in one of the largest DeFi hacks

Nomad, a bridge protocol for transferring crypto tokens across different blockchains, has suffered a cybersecurity incident, which saw hackers made off with almost all the funds in the wallet. According to estimates, the total value of cryptocurrency stolen in the attack has totaled close to $200 million.

The affected assets include wrapped versions of Bitcoin, Ethereum and several stablecoins like USDT and USDC, all of which were being used cross-chain between different blockchains, including Ethereum, Avalanche and Cardano.

The funds were drained over hours and in small batches by various accounts. According to blockchain security firm PeckShield, more that 41 IP addresses were identified involved in the theft.

Nomad has acknowledged the attack and said that an investigation into the incident is ongoing. Its not entirely clear how the attack was executed, or whether the company intends to reimburse users.

According to a security researcher who goes online as samczsun, a recent update to one of Nomad’s smart contracts made it easy for users to spoof transactions.

“... you didn't need to know about Solidity or Merkle Trees or anything like that. All you had to do was find a transaction that worked, find/replace the other person's address with yours, and then re-broadcast it,” samczsun explained.

The attack makes Nomad the latest bridge to suffer a theft this year. In March, cyber actors hacked the Ronin network used for the Axie Infinity blockchain-based game and stole more than $620 million in cryptocurrency. A month later, in April, the US authorities accused the North Korea-linked advanced persistent groups (APT) known as Lazarus Group and APT38 of the theft.

Back to the list

Latest Posts

Bleed You campaign exploits Windows IKE RCE to deploy ransomware

Bleed You campaign exploits Windows IKE RCE to deploy ransomware

Hackers have been targeting weak or vulnerable Windows OS, Windows Servers, Windows protocols, and services.
29 November 2022
Popular TikTok “Invisible Body” challenge used to spread malware

Popular TikTok “Invisible Body” challenge used to spread malware

The malicious video reached over a million views in just a couple of days after it was posted.
29 November 2022
Meta fined €265M over a massive 2021 Facebook data leak

Meta fined €265M over a massive 2021 Facebook data leak

Since 2021, the DPC has slapped Meta, Instagram and WhatsApp with €912 million in fines for alleged violations of GDPR.
29 November 2022