2025-12-29 02:22:28

The Flow chain has exposed an execution layer vulnerability, and this incident is quite serious. According to the latest report, on December 27th, someone exploited this vulnerability to transfer approximately $3.9 million worth of assets off-chain. The good news is that users' deposits were not affected; the funds that flowed out were mainly transferred via cross-chain bridges.

Currently, the Foundation has already taken action — the attacker's wallet address has been flagged and tracked, and the official has also issued freeze requests to mainstream institutions and exchanges like Circle and Tether. It appears they are doing their best to cut losses and recover assets. This incident also reminds us that on-chain security vulnerabilities are no small matter and require close attention.

FLOW-19,62%

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

13 Likes

Reward
13
7
Repost
Share

Comment

0/400

LoneValidator

· 5h ago

3.9 million dollars just gone like that, luckily the official response was quick, otherwise it would have been a huge loss. However, cross-chain bridges are indeed a major headache. When will they be fully resolved? How much can be recovered from Circle and Tether freezes? Let's wait and see. This wave of Flow is quite embarrassing; vulnerabilities can even occur at the execution layer. Need to check if there are issues with the code audit. It seems that cross-chain security is a deeper pit than layer2.

View OriginalReply0

TopBuyerForever

· 7h ago

It's another cross-chain bridge. Why do these things keep having issues? Flow responded quickly this time, just like that, $3.9 million was gone in an instant. Oh well. It seems like every time there's a problem, it's only fixed after the fact. It's hard to prevent.

View OriginalReply0

HalfIsEmpty

· 7h ago

$39 million just gone like that. Luckily, it's not user funds, or it would have caused a riot. --- Cross-chain bridge issues again. We really need to be cautious. I haven't forgotten the lesson from Poly Network's recovery. --- Currently tracking wallet addresses. Not sure how much can be recovered. It would be easier if Tether and Circle cooperate to freeze assets. --- Execution layer vulnerability? This isn't a small bug. What's going on with Flow? It needs to be fixed quickly. --- It seems you still have to diversify your assets. Relying on a single chain is too risky. --- Wait, how did the attacker find this vulnerability? They must be really skilled. --- Another on-chain security incident. These days, doing transactions really requires more caution.

View OriginalReply0

New_Ser_Ngmi

· 7h ago

3.9 million dollars just gone like that. Luckily, cross-chain bridges are the main disaster area; otherwise, users would be freaking out. --- This wave of vulnerabilities in Flow is really outrageous. I hope the Foundation can recover the funds; otherwise, trust will take a huge hit. --- It's another vulnerability at the execution layer. Are the security audits of these projects just for show? --- The combination of freezing wallets and tracking is still somewhat effective; at least it's not completely powerless. --- It's good that user funds are safe, but I'm worried that such incidents keep happening over and over again. --- Flowing out $3.9 million and still being able to report it so calmly shows that the Foundation handled it quite professionally. --- Another issue with cross-chain bridges. These things are really security risks; there's always some trouble happening.

View OriginalReply0

MetaReckt

· 7h ago

3.9 million USD just gone like that, and it was through a vulnerability. I'm really impressed. By the way, can Circle and Tether be frozen?

View OriginalReply0

NervousFingers

· 7h ago

3.9 million USD just gone like that. Luckily, user funds weren't touched, or it would have exploded.

View OriginalReply0

MetaMuskRat

· 8h ago

$3.9 million is gone just like that, this is the real picture of DeFi Flow's response this time was pretty good, at least they tracked it quickly, otherwise it would have been completely gg Cross-chain bridges are really a black hole, problems always happen every time Can official freeze requests be effective? Honestly, it's a bit uncertain That's why I prefer to HODL and not touch these new chains, it's too risky Vulnerabilities, if discovered late, can be a big trouble. Luckily, user funds are safe By the way, how did the attacker find this vulnerability? Their research ability is really strong It's the cross-chain bridge again causing trouble. When will this thing be fixed? It's fortunate that users weren't drained completely These days, what can on-chain security rely on? It always feels like new problems keep coming one after another

View OriginalReply0