Crypto hacks happen frequently although not all attackers succeed in converting their large thefts into actual financial gains. An unusual case emerged on Sunday which demonstrated that hackers can encounter unpredictable problems during their operations. An attacker discovered a security weakness in Hyperbridge which serves as a cross-chain platform that links multiple blockchain networks.
The hacker exploited this vulnerability to generate 1 billion Polkadot tokens on the Ethereum network, which had a market value of approximately $1.19 billion. His attempt to sell these tokens resulted in less than $237000 worth of ether being obtained by them.
The incident increases the number of bridge-related attack incidents which have occurred in 2026. A $270 million exploit targeted Drift Protocol on Solana which occurred just one month ago. The latest case demonstrated how attackers now use social engineering techniques to access crypto infrastructure while avoiding technical bugs.
The Polkadot network remained unaffected by this security breach. The problem existed within Hyperbridge’s system which specifically handled blockchain message verification processes. The native token of Polkadot DOT remained protected.
Your completely free resource hub designed to boost your knowledge of cryptocurrencies
How the exploit happened
The blockchain data and security company CertiK established that the attacker utilized Hyperbridge system to transmit a counterfeit cross-chain message. The security system failed to identify the message as a valid entry because its verification system contained a critical security flaw.
EthereumHost contract contained the security weakness that should have authenticated incoming messages before passing them to TokenGateway for processing. The attacker successfully interacted with the system because it failed to authenticate the message properly.
The attacker obtained complete administrative control over the bridged token contract after entering the system. The attackers used this power to create new tokens without any restrictions. They generated one billion tokens through a single transaction, which they started trading for ether on decentralized exchanges.
The attacker encountered an unexpected issue because he encountered insufficient market liquidity. The market simply could not absorb such a massive amount of tokens. The attackers lost all their tokens worth because their price crashed during the sale.
The billion-dollar exploit, which appeared to be a major theft, eventually produced only a minor financial gain.
The attacker made approximately $237,000 from his operation, according to CertiK’s findings. The firm also warned that the vulnerability lies in the bridge contract itself, raising concerns about whether other tokens using the same system could be at risk.
Hyperbridge has acknowledged the exploit in an official statement on X, stating that they have paused all bridging activity, while their team looks into the issue.
