{"id":63391,"date":"2022-06-24T08:31:53","date_gmt":"2022-06-24T05:31:53","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=63391"},"modified":"2025-09-06T08:47:15","modified_gmt":"2025-09-06T05:47:15","slug":"hacker-steals-about-100-million-in-harmonys-horizon-cross-chain-bridge-attack","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hacker-steals-about-100-million-in-harmonys-horizon-cross-chain-bridge-attack\/","title":{"rendered":"Hacker steals about $100 million in Harmony&#8217;s Horizon cross-chain bridge attack"},"content":{"rendered":"<p>The Harmony team said a cross-chain bridge attack on Horizon resulted in losses of about $100 million.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p dir=\"ltr\" lang=\"en\">1\/ The Harmony team has identified a theft occurring this morning on the Horizon bridge amounting to approx. $100MM. We have begun working with national authorities and forensic specialists to identify the culprit and retrieve the stolen funds.<\/p>\n<p>More \ud83e\uddf5<\/p>\n<p>\u2014 Harmony \ud83d\udc99 (@harmonyprotocol) <a href=\"https:\/\/twitter.com\/harmonyprotocol\/status\/1540110924400324608?ref_src=twsrc%5Etfw\">June 23, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>An unknown actor moved the tokens in several transactions, then sent them to another wallet and swapped them on the Uniswap decentralized exchange.<\/p>\n<p>Horizon is a cross-chain bridge between the Harmony blockchain and the Bitcoin, Ethereum, and BNB Chain networks.<\/p>\n<p>Representatives from Harmony suspended Horizon. They also said they had begun an investigation alongside law enforcement, including the FBI, and notified cryptocurrency exchanges about the situation.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p dir=\"ltr\" lang=\"en\">4\/ We have also notified exchanges and stopped the Horizon bridge to prevent further transactions. The team is all hands on deck as investigations continue.<\/p>\n<p>We will keep everyone up-to-date as we investigate this further and obtain more information.<\/p>\n<p>\u2014 Harmony \ud83d\udc99 (@harmonyprotocol) <a href=\"https:\/\/twitter.com\/harmonyprotocol\/status\/1540110932000395265?ref_src=twsrc%5Etfw\">June 23, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The team said the incident did not affect the trustless Bitcoin bridge \u2014 all funds remain safe in decentralized storage.<\/p>\n<div class=\"wp-block-text-wrappers-update-2 article_update\"><time class=\"gtb_text-wrappers_update_time\">June 24, 2022 | 09:12<\/time><span class=\"gtb_text-wrappers_update_head\">Update: <\/span><\/p>\n<p>Certik analysts said the attacker somehow gained control of the multisig wallet. This allowed him to move a large number of tokens from the bridge to Harmony.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;Our expert analysis identified 12 transactions and 3 addresses of attack. During the operations the hacker obtained various tokens, including ETH, USDC, WBTC, USDT, DAI, BUSD, AAG, FXS, SUSHI, AAVE, WETH and FRAX,&#8221; the study states.<\/p>\n<\/blockquote>\n<\/div>\n<p>In the wake of the hack, the Harmony (ONE) token fell 9.4% in 24 hours. At the time of writing its price was around $0.024, according to <a href=\"https:\/\/www.coingecko.com\/en\/coins\/harmony\">Coingecko<\/a>.<\/p>\n<p>In February, hackers drained from the Solana-based Wormhole cross-chain bridge more than <a href=\"https:\/\/forklog.com\/en\/news\/hackers-drain-more-than-319-million-from-wormhole-cross-chain-bridge-pool\">$319 million<\/a>, and also stole from the DeFi company Meter <a href=\"https:\/\/forklog.com\/en\/news\/hacker-siphons-4-3-million-from-meter-cross-chain-bridge\">about $4.3 million<\/a> in Bitcoin and Ethereum.<\/p>\n<p>In March, during the attack on the Ronin sidechain, the attacker stole crypto assets worth <a href=\"https:\/\/forklog.com\/en\/news\/ronin-the-ethereum-sidechain-hacked-attacker-siphons-625-million\">about $625 million<\/a>.<\/p>\n<p>Ethereum founder Vitalik Buterin previously said he is <a href=\"https:\/\/forklog.com\/en\/news\/vitalik-buterin-says-cross-chain-bridges-are-vulnerable-to-51-attacks\">pessimistic about cross-chain bridges<\/a>. In his view, the latest are vulnerable to 51% attacks.<\/p>\n<p>According to Immunefi, just in the first quarter of 2022 crypto projects lost <a href=\"https:\/\/forklog.com\/en\/news\/crypto-industry-losses-from-hacks-reach-1-22-billion-so-far-this-year\">more than $1.22 billion<\/a> due to hackers and scammers. <\/p>\n<p>Read ForkLog&#8217;s Bitcoin news in our <a href=\"\/\/telegram.me\/forklog\" target=\"\u201c_blank\u201d\" rel=\"\u201cnofollow\u201d noopener\">Telegram<\/a> \u2014 cryptocurrency news, prices and analysis.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Harmony team said a cross-chain Horizon bridge attack resulted in losses of about $100 million.<\/p>\n","protected":false},"author":1,"featured_media":63392,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"Harmony reports Horizon bridge attack with about $100 million stolen.","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1154,2139],"class_list":["post-63391","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-crimes","tag-harmony-one"],"aioseo_notices":[],"amp_enabled":true,"views":"31","promo_type":"1","layout_type":"1","short_excerpt":"Harmony reports Horizon bridge attack with about $100 million stolen.","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/63391","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=63391"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/63391\/revisions"}],"predecessor-version":[{"id":63393,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/63391\/revisions\/63393"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/63392"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=63391"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=63391"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=63391"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}