Cross-chain bridge hacks are causing big trouble for DeFi users in 2022
On 2nd August, the Nomad token bridge was hacked, resulting in the loss of $190 million worth of ETH and ERC-20 tokens.
Sounds like a pretty big deal, until you realize that this is only the third biggest bridge hack in history.
Furthermore, according to De.Fi research, the Nomad hack makes up just a fraction of the over $1.2 billion of funds lost via bridge hacks so far.
In front of Nomad on the list of biggest bridge hacks is Wormhole, which lost $326 million when it was hacked on 2nd February, and Ronin, which holds the ignominious title of biggest bridge hack in history, after it lost $625 million on 29th March.
All this in the year that JPMorgan christened “the year of the blockchain bridge” in January.
Fortunately, some funds have been recovered, with De.Fi research showing more than $351 million or over 25% of funds returned. For Nomad, this has involved over $37 million or nearly 20% being recovered thus far.
So, why have these hacks occurred and what can users do to protect themselves?
The story of massive cross-chain bridge hacks started with the rise of DeFi and alternative layer one protocols from the Summer of 2020, throughout 2021 and into 2022 (January — June). Of course, that’s not to say that interoperability of blockchains only came about as a result of DeFi but it certainly accelerated the process.
As crypto-natives saw the huge upside potential from yield farming and the opportunities that existed on faster, cheaper blockchain networks than Ethereum, they sought out ways to move their funds. To do this, you need a bridge and the demand from users led to a lot of projects directing their efforts towards this type of solution.
By the Summer of 2021, bridging between networks had become common practice for DeFi yield farmers and NFT buyers.
Although bridges can be a way to transfer all kinds of different data across blockchains, the most common use of a bridge is for transferring tokens. Usually, this involves locking up an amount of tokens in a smart contract on one blockchain and then receiving an equivalent amount on another.
The bridge is the mechanism that records what is locked on one blockchain and mints the equivalent amount on the other blockchain. If the user completes what they wanted to do and returns to the original chain, they can use the bridge again to unlock their assets onto the original chain.
There are various ways a bridge could be attacked, including gaining control of smart contract addresses, attacking the contract where assets are locked in order to release them to hackers or minting tokens on one blockchain when no tokens have been locked up on the other.
Whatever the issue, DeFi users to make sure they’re doing all they can to stay safe.
As we always say, one of the best ways to stay safe in DeFi is to ‘Do Your Own Research’ and this is also good advice when it comes to understanding the bridges you choose as well.
That doesn’t mean you need to know everything about bridge technology but it does mean that searching for useful, publicly-available information about the one you aim to use is a good idea, as is accessing any related blockchain security tools.
Fortunately, De.Fi has a number of options designed to keep you safe.
When you use De.Fi Shield, you can check whether every asset in your portfolio is safe and not exposed to smart contract risks.
That’s possible because it scans the smart contracts you have interacted with, any token contracts you hold and any approvals you have granted.
The REKT Database is the world’s first publicly-available resource for finding all DeFi scams, exploits and hacks.
That means DeFi users can use the ‘exploit’ search to find out if the bridge they are planning to use is registered on the REKT Database for any reason.
The De.Fi Audit Database is the world’s most comprehensive database of all smart contract audits performed to date.
Therefore, if you want to dig a little deeper into the audits that your chosen bridge has undertaken and find out what they say, this is the resource you need.
As always, stay safe and DYOR!
For more De.Fi updates you can visit us at:
🌐 Website | 📱 Telegram | 🐦Twitter
Want more? Check ALL GUIDES!
And join us on twitter and telegram!
Good luck in farming!
August 30 • 5 minutes
As an investor in DeFi, keeping track of digital assets across various platforms and blockchains can be a daunting task.
April 5 • 8 minutes
As the crypto bull market heats up, more investors seek to navigate the burgeoning world of decentralized finance (DeFi).
March 8 • 20 minutes
When engaging with decentralized finance (DeFi), investors often face the challenge of managing investments, tracking yields, and ensuring they keep all their assets safe.
February 15 • 15 minutes
January 2024 was an incredibly important month for us. We achieved significant results and made remarkable progress.
February 6 • 4 minutes
With new crypto ecosystems popping up on a regular basis, the integration of different blockchain networks with popular wallets is a key narrative moving into the next crypto cycle.
January 26 • 6 minutes
This month, we are proud to announce that De.Fi has secured investments from the first BTC ETF provider. We're seeing a huge spike in mentions and social interest in De.Fi and $DEFI token right before the listing.
January 18 • 6 minutes
© De.Fi. All rights reserved.
