{"id":19915568,"url":"https://github.com/demining/cross-chain-bridge","last_synced_at":"2026-05-01T21:02:23.236Z","repository":{"id":144620922,"uuid":"567471359","full_name":"demining/Cross-Chain-Bridge","owner":"demining","description":"Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks","archived":false,"fork":false,"pushed_at":"2022-12-07T01:03:13.000Z","size":1471,"stargazers_count":2,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-03-01T09:24:20.597Z","etag":null,"topics":["bitcoin","blockchain","blockchain-technology","btc","cross-chain","cross-chain-bridge","eth","ethereum","ethereum-contract","hack","hackerrank-solutions","hacking","vulnerability","vulnerability-scanners"],"latest_commit_sha":null,"homepage":"https://cryptodeeptech.ru/cross-chain-bridge","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/demining.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-11-17T21:32:33.000Z","updated_at":"2024-08-12T20:28:25.000Z","dependencies_parsed_at":null,"dependency_job_id":"1ac96981-b12d-47aa-9bf0-040b59e85be8","html_url":"https://github.com/demining/Cross-Chain-Bridge","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/demining/Cross-Chain-Bridge","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/demining%2FCross-Chain-Bridge","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/demining%2FCross-Chain-Bridge/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/demining%2FCross-Chain-Bridge/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/demining%2FCross-Chain-Bridge/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/demining","download_url":"https://codeload.github.com/demining/Cross-Chain-Bridge/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/demining%2FCross-Chain-Bridge/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32512670,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-30T13:12:12.517Z","status":"online","status_checked_at":"2026-05-01T02:00:05.856Z","response_time":64,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bitcoin","blockchain","blockchain-technology","btc","cross-chain","cross-chain-bridge","eth","ethereum","ethereum-contract","hack","hackerrank-solutions","hacking","vulnerability","vulnerability-scanners"],"created_at":"2024-11-12T21:40:59.386Z","updated_at":"2026-05-01T21:02:23.216Z","avatar_url":"https://github.com/demining.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks\n\n\n---\n---\n\n\n\n\u003cfigure class=\"wp-block-image\"\u003e\u003cimg decoding=\"async\" src=\"./Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks CRYPTO DEEP TECH_files/025-1-1024x576.png\" alt=\"Cross-chain bridges as the value of the blockchain becomes attractive for various attacks\" class=\"wp-image-1745\"\u003e\u003c/figure\u003e\n\n\n\n---\n---\n\n\n\n\u003cp\u003eThis article will focus on a vulnerability in inter-network bridge protocols, which is a big security threat to smart contracts between different blockchains.\u003c/p\u003e\n\n\n\n\u003cp\u003eCross bridges are an attractive target for hackers because they often represent a central storage point for the funds that support the “bridge” assets on the receiving blockchain.\u003c/p\u003e\n\n\n\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://cryptodeep.ru/cross-chain-bridge\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eWhat are Internet Bridge Protocols?\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\n\n\n\u003cp\u003eBridges are designed to solve the problem of interoperability between different blockchains.\u0026nbsp;\u003ca href=\"https://cryptodeep.ru/cross-chain-bridge\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eA bridge\u003c/a\u003e\u0026nbsp;is a protocol that allows a user to transfer digital assets from one blockchain to another.\u0026nbsp;One of the most famous examples\u0026nbsp;\u003ccode\u003eWormhole\u003c/code\u003eis the bridging protocol, which allows users to move cryptocurrencies\u0026nbsp;\u003ccode\u003eNFT\u003c/code\u003ebetween different smart contract blockchains such as Solana and Ethereum.\u0026nbsp;In February\u0026nbsp;\u003ccode\u003e2022\u003c/code\u003eof the year, there was a case when an unknown hacker found an exploit in the smart contract code\u0026nbsp;\u003ccode\u003eWormhole\u003c/code\u003ethat allowed him to create\u0026nbsp;\u003ccode\u003e120 000\u003c/code\u003e\u0026nbsp;\u003ccode\u003eWrapped Ethereum\u003c/code\u003eon\u0026nbsp;\u003ccode\u003eSolana (WeETH)\u003c/code\u003ewithout providing the necessary equivalent collateral\u0026nbsp;\u003ccode\u003eEthereum\u003c/code\u003e.\u0026nbsp;\u003c/p\u003e\n\n\n\u003cdiv class=\"wp-block-image\"\u003e\n\u003cfigure class=\"aligncenter\"\u003e\u003cimg decoding=\"async\" src=\"./Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks CRYPTO DEEP TECH_files/image-64.png\" alt=\"Cross-chain bridges as the value of the blockchain becomes attractive for various attacks\" class=\"wp-image-1715\"\u003e\u003c/figure\u003e\u003c/div\u003e\n\n\n\u003cp class=\"has-text-align-center\" style=\"font-size:24px\"\u003e\u003ca href=\"https://techcrunch.com/2022/02/03/blockchain-bridge-wormhole-confirms-that-exploiter-stole-320-million-worth-of-crypto-assets/?guccounter=1\u0026amp;guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8\u0026amp;guce_referrer_sig=AQAAAIosYdwRxjX5NdBm8j9DLXZREVBZaGegO8QyHCuIXB6BesYIrbH0US3Ffwjkra9ZXYCxSiIlXuzzJ9HrzcZY_-f8uddOB8dC09tpJAvvt7lTLVg3w-eE_WGQnAGHbhHk-TCk3IHTVG0A_z3-fTnZtyMu1KXB48-nbs1o-BP7RR8A\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eThe Wormhole blockchain bridge confirms that the exploit stole US$320 million worth of crypto assets.\u003c/a\u003e\u003c/p\u003e\n\n\n\n\u003cp\u003eTo understand why this incident was more serious than a normal hack, we need to know how cross bridges work.\u0026nbsp;Users interact with bridges by sending funds in one asset to the bridge protocol, where the funds are then fixed in a contract.\u0026nbsp;The user is then given the equivalent funds of the parallel asset on the chain to which the protocol is connected.\u0026nbsp;In the case of Wormhole, users typically send ether\u0026nbsp;\u003ccode\u003e(ETH)\u003c/code\u003eto the protocol, where it is stored as collateral, and issued\u0026nbsp;\u003ccode\u003eWeETH\u003c/code\u003eto\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003e, backed by the collateral locked in the contract\u0026nbsp;\u003ccode\u003eWormhole\u003c/code\u003eto\u0026nbsp;\u003ccode\u003eEthereum\u003c/code\u003e.\u003c/p\u003e\n\n\n\n\u003cp\u003eThis high-profile hack meant that\u0026nbsp;\u003ccode\u003eWeETH\u003c/code\u003e$\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003e320 million was not secured within a certain period of time.\u0026nbsp;If Ethereum\u0026nbsp;\u003ccode\u003eWeETH\u003c/code\u003ewas not secured, this would mean that a number of platforms on the basis of\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003eaccepting\u0026nbsp;\u003ccode\u003eWeETH\u003c/code\u003eas collateral could become insolvent.\u0026nbsp;We could see users rush to sell their WeETH, causing its value to drop, with major implications for the blockchain\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003eand the vast ecosystem\u0026nbsp;\u003ccode\u003e\u003ca href=\"https://cryptodeep.ru/defi-attacks\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eDeFi\u003c/a\u003e\u003c/code\u003ebuilt on top of it, as many of these protocols also rely on\u0026nbsp;\u003ccode\u003eWeETH\u003c/code\u003eto back issued assets.\u0026nbsp;users.\u0026nbsp;Indeed, last night we saw the price\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003eof\u0026nbsp;\u003ccode\u003e13,5%\u003c/code\u003e, which many attribute to fears of a hack.\u003c/p\u003e\n\n\n\n\u003cp class=\"has-text-align-center\"\u003eJump Trading, the parent company of Wormhole and a major player in the Solana ecosystem, tweeted:\u003c/p\u003e\n\n\n\u003cdiv class=\"wp-block-image\"\u003e\n\u003cfigure class=\"aligncenter\"\u003e\u003cimg decoding=\"async\" src=\"./Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks CRYPTO DEEP TECH_files/image-65.png\" alt=\"Cross-chain bridges as the value of the blockchain becomes attractive for various attacks\" class=\"wp-image-1719\"\u003e\u003c/figure\u003e\u003c/div\u003e\n\n\n\u003cp class=\"has-text-align-center\"\u003e\u003ccode\u003eJump Trading\u003c/code\u003eprovided coins to\u0026nbsp;\u003ccode\u003eETH\u003c/code\u003ereplace stolen funds after attempts to pay the hacker a reward for the stolen funds were ignored.\u003c/p\u003e\n\n\n\n\u003ch2\u003eBridge construction\u003c/h2\u003e\n\n\n\n\u003cp\u003eBridge designs vary, users typically interact with bridges by sending funds in one asset to the bridge protocol, where the funds are then fixed in a contract.\u0026nbsp;The user is then given the equivalent funds of the parallel asset on the chain to which the protocol is connected.\u0026nbsp;In the case of a wormhole, users typically send ether\u0026nbsp;\u003ccode\u003e(ETH)\u003c/code\u003eto the protocol, where it is stored as collateral, and released\u0026nbsp;\u003ccode\u003eETH\u003c/code\u003ewormhole-wrapped to , backed\u0026nbsp;\u003ccode\u003eSolana\u003c/code\u003eby the collateral locked in the wormhole’s contract to\u0026nbsp;\u003ccode\u003eEthereum\u003c/code\u003e.\u003c/p\u003e\n\n\n\n\u003ch2\u003eVulnerable cross bridges\u003c/h2\u003e\n\n\n\n\u003cp\u003eBridges are an attractive target because they often represent a central storage point for the funds that support “bridge” assets on the host blockchain.\u0026nbsp;Whether these funds are stored in a smart contract or in a centralized custodian, this storage point becomes the target.\u0026nbsp;In addition, efficient bridge design is still an unresolved technical issue, with many new models being developed and tested.\u0026nbsp;These various schemes represent new attack vectors that could be exploited by attackers as best practices improve over time.\u003c/p\u003e\n\n\n\n\u003cp\u003eJust a few years ago, centralized exchanges were the most common target for hacks in the industry.\u0026nbsp;Today, successful hacks of centralized exchanges are rare.\u0026nbsp;This is because these organizations prioritize their security, and also because hackers are always on the lookout for the latest and most vulnerable services to attack.\u0026nbsp;\u003c/p\u003e\n\n\n\n\u003cp\u003eWhile not reliable, a valuable first step to solving problems like this could be extremely rigorous code auditing, which would become the gold standard\u0026nbsp;\u003ca href=\"https://cryptodeep.ru/defi-attacks\" target=\"_blank\" rel=\"noreferrer noopener\"\u003e\u003ccode\u003eDeFi\u003c/code\u003e\u003c/a\u003efor both these build protocols and the investors who evaluate them.\u0026nbsp;Over time, the most reliable and secure smart contracts can serve as templates for developers.\u0026nbsp;Cryptocurrency services, including but not limited to bridges, must invest in security measures and training.\u003c/p\u003e\n\n\n\n\u003chr class=\"wp-block-separator has-alpha-channel-opacity\"\u003e\n\n\n\n\u003ch2\u003eConclusion:\u003c/h2\u003e\n\n\n\n\u003cp class=\"has-background\" style=\"background-color:#f78da812\"\u003eAt the moment, all these modern attacks on bridges account for\u0026nbsp;\u003ccode\u003e69%\u003c/code\u003eall the funds stolen in a\u0026nbsp;\u003ccode\u003e2022\u003c/code\u003eyear.\u0026nbsp;This poses a serious threat to blockchain technology.\u0026nbsp;As more value passes through\u0026nbsp;\u003ca href=\"https://cryptodeep.ru/cross-chain-bridge\" target=\"_blank\" rel=\"noreferrer noopener\"\u003ecross-chain bridges\u003c/a\u003e\u0026nbsp;, they become more attractive to hackers.\u003c/p\u003e\n\n\n\n\u003chr class=\"wp-block-separator has-alpha-channel-opacity\"\u003e\n\n\n\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/demining/Cross-Chain-Bridge\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eGitHub\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\n\n\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://t.me/cryptodeeptech\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eTelegram: https://t.me/cryptodeeptech\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\n\n\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://youtu.be/9rDEepQOyaM\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eVideo: https://youtu.be/9rDEepQOyaM\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\n\n\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://cryptodeeptech.ru/cross-chain-bridge\" target=\"_blank\" rel=\"noreferrer noopener\"\u003eSource: https://cryptodeeptech.ru/cross-chain-bridge\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\n\n\n\u003chr class=\"wp-block-separator has-alpha-channel-opacity\"\u003e\n\n\n\n\u003cfigure class=\"wp-block-image\"\u003e\u003cimg decoding=\"async\" src=\"./Cross-Chain Bridges as the value of the Blockchain becomes attractive for various attacks CRYPTO DEEP TECH_files/025-1024x576.png\" alt=\"Cross-chain bridges as the value of the blockchain becomes attractive for various attacks\" class=\"wp-image-1743\"\u003e\u003c/figure\u003e\n\n\n\n\n---\n\n\n\n\n|  | Donation Address |\n| --- | --- |\n| ♥ __BTC__ | 1Lw2gTnMpxRUNBU85Hg4ruTwnpUPKdf3nV |\n| ♥ __ETH__ | 0xaBd66CF90898517573f19184b3297d651f7b90bf |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdemining%2Fcross-chain-bridge","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdemining%2Fcross-chain-bridge","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdemining%2Fcross-chain-bridge/lists"}