Vavada Banner
BTC $70,084.00 (+4.10%)
ETH $2,042.26 (+2.86%)
BNB $644.35 (+3.26%)
XRP $1.39 (+2.25%)
SOL $86.49 (+3.41%)
TRX $0.29 (-1.66%)
DOGE $0.09 (+1.42%)
ADA $0.26 (+2.67%)
BCH $448.86 (-0.51%)
LEO $9.15 (+1.01%)
HYPE $34.59 (+13.08%)
LINK $9.02 (+3.67%)
XMR $343.22 (+0.36%)
CC $0.15 (-2.39%)
XLM $0.15 (+2.51%)
RAIN $0.01 (+1.27%)
LTC $54.23 (+1.60%)
HBAR $0.10 (+0.15%)
AVAX $9.42 (+4.74%)
ZEC $224.61 (+10.45%)
Back to News

IoTeX Losses $4.4m in a Cross Bridge Hack, Offers 10% Bounty

Twitter icon  •  Published 1 week ago on February 24, 2026  •  Hassan Maishera

On Monday, the IoTeX team announced via X that IoTeX suffered an exploit on February 21, in which an attacker compromised a private key on its cross-chain bridge, ioTube, siphoning millions of dollars.

IoTeX Losses $4.4m in a Cross Bridge Hack, Offers 10% Bounty

On Monday, the IoTeX team announced via X that IoTeX suffered an exploit on February 21, in which an attacker compromised a private key on its cross-chain bridge, ioTube, siphoning millions of dollars.

The attacker allegedly moved $4.4 million from the bridge. The team is now offering 10% white-hat bounty to the hacker or hackers in exchange for the voluntary return of funds within 48 hours.

IoTeX co-founder and CEO Raullen Chai said the team sent an onchain message offering not to pursue legal action or share identifying information with law enforcement if the remaining funds are returned.

The message states that exchange deposits have been flagged and frozen and offers a 10% bounty for the return of remaining funds.

Chai also said IoTeX is rolling out a new chain version, Mainnet v2.3.4, requiring node operators to upgrade. The update includes a default blacklist of malicious externally owned account (EOA) addresses.

IoTeX assured its community that the incident is “under control,” adding that its Layer 1 blockchain was not affected and that the breach was isolated to the Ethereum-side infrastructure of the bridge.

The team explained that the attack targeted the Ethereum side of the ioTube bridge through a sophisticated four-step chain:

  • Validator Key Compromise: The owner account of the Validator contract on Ethereum was compromised, granting the attacker administrative control.

  • Malicious Upgrade: The attacker used this access to upgrade the Validator contract to a malicious version that bypassed all signature and validation checks.

  • Contract Takeover: With the validator layer subverted, the attacker took control of the MintPool (token minting) and TokenSafe (reserve assets).

  • Asset Drainage: The attacker minted 410M CIOTX and drained approximately $4.4M in various tokens from the bridge reserves.

IoTeX's mission is to be a privacy-centric blockchain managing the entire information lifecycle of an Internet of Things (IoT) network, including data collection, transport, storage, and utilization. IOTX is up 2.7% today and is currently trading at $0.004429.

Federal Judge Dismisses Binance’s Terrorism Lawsuit
Next article Federal Judge Dismisses Binance’s Terrorism Lawsuit

Author

Read Hassan Maishera's articles →
Hassan Maishera

Hassan is a Nigeria-based financial content creator that has invested in many different blockchain projects, including Bitcoin, Ether, Stellar Lumens, Cardano, VeChain and Solana. He currently works as a financial markets and cryptocurrency writer and has contributed to a large number of the leading FX, stock and cryptocurrency blogs in the world.

Editorial Standards Corrections & Retractions Policy About
Follow us on Google News
BC.game Banner