Flow suffers a hacker attack, $3.9 million worth of assets transferred, official initiates protocol repair and fund freeze procedures

2025-12-28 00:40:10

【Blockchain Rhythm】Flow blockchain experienced a serious security incident in late December. The attacker successfully exploited a vulnerability in the Flow execution layer and transferred approximately $3.9 million worth of assets before the network was shut down. Fortunately, this attack did not involve users’ existing balances, and all deposits remain secure.

According to tracking data, the stolen $3.9 million was mainly transferred out through cross-chain bridges such as Celer, Debridge, Relay, and Stargate. Security agencies have successfully identified and marked the attacker’s wallet and are monitoring its money laundering activities in real-time via Thorchain and Chainflip. The Flow Foundation promptly took action by submitting emergency freeze requests to stablecoin issuers like Circle and Tether, as well as major mainstream trading platforms, in an attempt to prevent further fund transfers.

From a technical perspective, the Flow team has completed and officially released a fix for this vulnerability. Currently, node operators are actively coordinating the deployment of this upgrade to restore the network’s secure operation as soon as possible.

FLOW-12,69%

CELR7,57%

DBR0,34%

STG6,19%

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

12 Likes

Reward
12
9
Repost
Share

Comment

0/400

TerraNeverForget

· 2025-12-29 23:49

3.9 million dollars just gone like that, Flow really dropped the ball this time --- Fortunately, user funds weren't affected, or it would have really caused a riot --- Another cross-chain bridge issue? These things are really risky --- The freezing process was initiated so quickly, the foundation's efficiency is still commendable --- Hackers are probably panicking now, all the money has been flagged haha --- Flow needs to thoroughly review this vulnerability; even the execution layer can be exploited --- Thorchain and Chainflip, these money laundering channels, also need to be on alert --- It seems the stablecoin issuers are also taking action, the freezing力度 is not small --- I'm just worried that hackers have already cashed out some of the funds, recovering them will be too difficult --- That's why I've never had a good impression of cross-chain bridges; there are just too many issues

View OriginalReply0

AirdropJunkie

· 2025-12-29 00:28

It's another problem with cross-chain bridges. These bridges really need thorough audits. Flow responded quite quickly this time, and the freeze request was sent directly. 3.9 million is not a small amount, but at least it didn't affect users' principal. Such a significant vulnerability at the execution layer? We'll have to wait for the subsequent technical analysis. When will cross-chain security issues truly be resolved...

View OriginalReply0

DuskSurfer

· 2025-12-28 01:10

Here we go again? This time, 3.9 million is gone. Luckily, user funds weren't affected, but how many people will still dare to use it if this continues?

View OriginalReply0

CryptoTarotReader

· 2025-12-28 01:09

$3.9 million just gone like that, Flow really dropped the ball this time --- Cross-chain bridge builder strikes again, this thing is truly a hacker's ATM --- Fortunately, user funds weren't touched, or it would have caused a huge uproar --- Thorchain and Chainflip have both become money laundering channels, how many exchanges can freeze that many transactions? --- Flow's execution layer vulnerability... why do these things keep happening? Should we re-examine the code? --- Are emergency freeze requests effective? Money laundering experts simply can't be stopped by this setup --- Why is it so easy for cross-chain bridges to be exploited? Is it a design flaw or something else? --- If this were an ordinary project, it would have been shut down long ago. Luckily, Flow has some influence and can withstand this

View OriginalReply0

LiquidityOracle

· 2025-12-28 01:08

Damn, the bridge has been hacked again... These cross-chain protocols really need to thoroughly review their code.

View OriginalReply0

ETHmaxi_NoFilter

· 2025-12-28 01:08

3.9 million dollars just gone like that, and they have to rely on freezing to save the situation... Is this what they call "decentralization"?

View OriginalReply0

LiquidatedThrice

· 2025-12-28 01:06

3.9 million was hacked, these bridges are really the source of vulnerabilities... Luckily, user funds weren't affected, or else it would have caused another uproar.

View OriginalReply0

SeasonedInvestor

· 2025-12-28 01:04

3.9 million is all? Cross-chain bridges have become sieve again... It's about time to take strong action against these bridges --- Fortunately, no user funds were moved, or it would have caused a huge uproar. Flow was lucky this time --- Thorchain, Chainflip money laundering... This guy has really big guts, still wants to run? --- Are freeze requests effective? Has the crypto world ever recovered a few cases of stolen funds? --- Again, an execution layer vulnerability. The development team needs to learn from this, or similar incidents will happen again --- Circle and Tether cooperating on freezes—let's see if some funds can be recovered this time --- No wonder Flow hasn't been doing well recently; it got hit... Be cautious with your holdings --- It's only 3.9 million, compared to Luna's collapse, this is a small scene --- Cross-chain bridges are just ridiculous; they keep getting hacked every time. When will they become safer?

View OriginalReply0

StableGeniusDegen

· 2025-12-28 00:52

3.9 million dollars just gone like that, what is Flow playing at? --- Another cross-chain bridge... I wonder why bridge hacking incidents are so frequent now, are these protocols really reliable? --- But luckily user funds are safe, or it would have really caused a stir this time. --- Circle and Tether are rapidly freezing assets, whatever can be recovered is what will be recovered. They are getting more and more proficient with this process. --- Execution layer vulnerability? It feels like there have been a bunch of issues with Flow recently... --- Monitoring money laundering paths sounds quite professional, but can these 3.9 million really be recovered? I remain skeptical. --- Again Stargate... why are these bridges so easy to exploit? --- Fortunately, it didn't touch user balances, or confidence would have been shattered. --- Why have these vulnerabilities existed for so long? Was the audit not done properly? --- It seems cross-chain security is really a big problem, and further optimization is needed.

View OriginalReply0