Self-styled “unbreakable” Hyperbridge protocol has been exploited, lower than two weeks after making a tasteless April Fools’ joke about being hacked.
Regardless of beforehand explaining how a hack was unattainable as a part of the April 1 prank, the mission acknowledged the exploit in a “bridge update!” posted to X.
In keeping with crypto safety agency CertiK, the hacker “forged message to change the admin of Polkadot token contract on Ethereum and profited ~$237K from minting and selling 1B tokens.”
One other on-chain analyst flagged an additional 245 ether (price over $500,000) which was allegedly drained from the mission’s TokenGateway contract earlier than being deposited into Twister Money.
Whereas this loss could also be modest in comparison with many crypto hacks, particularly bridges, many have centered on the karma dealt to a mission with a constantly cavalier perspective in the direction of safety.
Hyperbridge claimed the North Korean Lazarus Group had drained $37 million on April 1. The announcement linked to a (now deleted) weblog put up which contained a Rickroll gif earlier than explaining “Why Hyperbridge Can’t Be Hacked.”
In February, additionally they posted screenshots which seem to indicate correspondence with a giant bounty hunter flagging important vulnerabilities, who was instructed “exploit them if you found them.”
Apparently taking the April Fools’ prank as a problem, a identified exploiter handle started testing Hyperbridge. The makes an attempt have been dismissed with “hope you have a quantum computer bro.”
