Litecoin suffered its first major privacy-layer exploit on April 25, 2026, when attackers leveraged a vulnerability in its MimbleWimble Extension Block (MWEB) layer to route invalid transactions through unpatched mining nodes, triggering a 13-block chain reorganization that erased roughly 32 minutes of network history and exposed cross-chain protocols to double-spend risk.
How the attack unfolded
The attack occurred at two locations at once. The first exploit of MWEB vulnerability was via a denial-of-service (DoS) attack of major known mining pools running the updated version of the software, which put offline these pools and stole their hashing power from the network. Because the updated nodes were kept in the dark, older nodes that were not security patched went unchecked for transactions.
Those unpatched nodes accepted an invalid MWEB transaction that should have been rejected. The malicious transaction allowed the attacker to peg out coins from the MWEB privacy layer to third-party decentralized exchanges (DEXs) and cross-chain swap protocols. During the fork window, which spanned blocks 3,095,930 to 3,095,943 and lasted over three hours, the attacker executed multiple double-spend attempts against those protocols.
Aurora Labs CEO Alex Shevchenko, who tracked the incident in real time on X, described it as a “coordinated attack” and confirmed that a Binance-funded address had been pre-loaded approximately 38 hours before the exploit, pointing to deliberate advance planning.
Your completely free resource hub designed to boost your knowledge of cryptocurrencies
What is MWEB, and why was it targeted?
MWEB, MimbleWimble Extension Blocks, is a privacy extension that Litecoin activated via a soft fork in May 2022. It allows users to optionally conceal transaction amounts and addresses, adding a confidentiality layer on top of Litecoin’s transparent base chain. Users move coins between the main chain and the privacy layer through a process called pegging in and pegging out. That peg-out mechanism became the attack surface on April 25.
The MWEB flaw allowed a crafted transaction to bypass the input validation logic on unpatched nodes, making an unauthorized peg-out appear legitimate. Saturday’s exploit was the first known major attack on MWEB since Litecoin introduced the feature, a clean record of nearly four years that ended in a three-hour chain crisis.
Was this really a zero-day? GitHub tells a different story
The Litecoin Foundation’s post-mortem labeled the vulnerability a “zero-day”, an exploit unknown to developers before it was used. That framing immediately drew pushback.
A review of Litecoin’s public GitHub repository revealed that core developers had privately patched the MWEB consensus bug between March 19 and March 26, 2026, a full 37 days before the attack. The fix was included in Litecoin Core release v0.21.5.4, which was only pushed out on the afternoon of April 25, after the exploit had already begun.
Collateral damage and industry reaction
Cross-chain protocol NEAR Intents reported exposure of approximately $600,000 tied to the exploit. Because the 13-block reorg reversed the invalid transactions from Litecoin’s main chain, actual settled losses across affected protocols may turn out lower than initially feared. NEAR Intents said its team would cover any user shortfall; other cross-chain platforms that paused LTC activity are still calculating their final positions.
The incident lands in a brutal year for crypto security. DeFi protocols had already absorbed over $750 million in exploit losses through mid-April 2026 alone, including the $292 million Kelp DAO bridge drain on April 19 and a $285 million attack on Solana-based perpetuals platform Drift on April 1. Blockchain developer Vadim, posting on X, put it plainly: “Low hashrate layer 1’s are not safe collateral for cross-chain value anymore.”
LTC traded near $56 following the disclosure, down about 1% on the day, signaling no immediate market panic, though the token remains down nearly 25% year-to-date. The Litecoin Foundation urged all node operators, miners, and wallet users to upgrade to v0.21.5.4 immediately. The new release corrects MWEB input and output accounting, prevents a kernel fee overflow condition, and erases corrupted block data.
