Hacker tries to exploit bridge protocol, fails miserably: Finance Redefined



Cross-chain bridges have increasingly become targeted by malicious entities. However, not all hackers can run away with millions in their exploit attempts. Some end up losing money from their own wallets.

In a Twitter thread, Alex Shevchenko, the CEO of Aurora Labs, told the story of a hacker who attempted to exploit the Rainbow Bridge but ended up losing 5 Ether (ETH), worth around $8,000 at the time of writing.

According to Shevchenko, the hacker has presented a falsified NEAR block to the Rainbow Bridge contract and submitted the required 5 ETH safe deposit. Thinking that the team would be slow to react during the weekend, the attacker timed the exploit attempt on a Saturday.

Despite the hacker's plan, the CEO highlighted that there were automated watchdogs in place that fought off the malicious transaction. Within 31 seconds, the attempt was suppressed, leading to the hacker losing their safety deposit.

Because of the increasing exploit attempts, the CEO noted that their team is considering increasing the amount required for safe deposits. However, the idea was dumped as the team wants to stay as committed to decentralization as possible.

Shevchenko also left a message to the attacker. The CEO urged the hacker to try to do good for the community by working on bug bounties instead of stealing users' money and trying to launder the stolen assets.