Polkadot Experiences 6% Price Drop Amid Ethereum Token Minting Flaw
We have always followed the principles of transparency and clear information. Some of our content includes affiliate links, and we may earn a small commission through these partnerships. These partnerships do not influence our editorial independence or opinion. By using our site, you accept our privacy policy and terms and conditions.
A Senior Altcoin Analyst, Sarah combines on-chain data with a background in venture capital research. With a Masterβs in Computer Science, she provides precise evaluations…
Cryptocurrency is a high-risk asset class, and investing carries significant risk, including the potential loss of some or all of your investment. The information on this website is provided for informational and educational purposes only and does not constitute financial, investment, or gambling advice. Cryptowinx does not endorse any specific exchange or gaming platform. For more details, please read our terms and full disclaimer.
Cryptowinx navigates the digital asset universe with a dynamic, forward-looking vision. Throughout our evolution, we have followed every market cycle, from vertical rises to corrections, always remaining a solid point of reference for our community. Our team is made up of industry experts and analysts who experience the blockchain ecosystem daily: we constantly monitor Bitcoin’s stability, study the expansion of the Ethereum ecosystem, and analyze the new frontiers of crypto casinos. We are committed to absolute editorial integrity, separating the signal from the noise through rigorous fact-checking and multi-perspective news analysis. In a landscape where innovations emerge in moments, our mission is to simplify complex concepts and offer transparency into what is established and what is still experimental.
Learn more Cryptowinx
On April 13, a security oversight involving the Hyperbridge gateway resulted in the unauthorized minting of a staggering 1 billion Polkadot tokens on the Ethereum network. This incident, identified by blockchain security firm Certik, sent shockwaves through the cryptocurrency community.
After the exploit was made public, the value of DOT plummeted by 6%, from $1.23 to $1.16. However, it was not long before the cryptocurrency began to recover, with prices stabilizing at around $1.19 shortly thereafter.
The attacker exploited a weakness in the Hyperbridge gateway’s smart contract. By fabricating a message, the individual was able to gain unauthorized administrative rights over the bridged version of the DOT contract on Ethereum, leading to the creation of the tokens in a single transaction.
Interestingly, despite the massive number of tokens minted, the hacker was limited in their ability to liquidate them due to the low liquidity of the bridged DOT on the Ethereum platform. Analysis from Lookonchain revealed that the entire haul was processed in one swap, resulting in approximately 108.2 ether, valuing around $237,000 at the time.
This incident highlighted significant vulnerabilities that could have had more severe financial implications had the bridged tokens been more actively traded. Security experts emphasized that the breach was isolated to the Hyperbridge gateway, asserting that the main Polkadot relay chain and legitimate tokens on the Polkadot network remained secure and unaffected.
Certikβs analysis indicated that the exploit derived from a replay vulnerability in the Merkle Mountain Rangeβs calculateroot function, which failed to properly bind proofs to requests. As a result, attackers could reuse prior state commitments without detection. This flaw created a channel for unchecked malicious scripts that ultimately facilitated the unauthorized administrative changes to the token.
Although Hyperbridge developers have not yet published a comprehensive post-mortem regarding the specific vulnerabilities, they are anticipated to implement necessary patches to safeguard against future exploits of this nature.
In summary, this incident serves as a reminder of the critical importance of security within blockchain technologies, and the need for constant vigilance in safeguarding assets against potential breaches.
Leave the reaction
Sarah Chen
Commentaries
Add your comment
Fill in necessary fields and publish