Gravity Bridge Hacker Launders Stolen Crypto Through ChangeNOW and Binance, PeckShield Reports

BitcoinWorld

Gravity Bridge Hacker Launders Stolen Crypto Through ChangeNOW and Binance, PeckShield Reports

Blockchain security firm PeckShield has reported that the hacker responsible for the recent Gravity Bridge exploit has moved a portion of the stolen funds through cryptocurrency exchanges ChangeNOW and Binance. The attack, which targeted the cross-chain bridge, resulted in the theft of assets valued at approximately $5.4 million.

Details of the Attack and Laundering

According to PeckShield’s on-chain analysis, the attacker currently still holds 2,102 ETH, worth roughly $4.23 million at current market prices. The firm’s tracking indicates that the hacker used both ChangeNOW and Binance to launder part of the stolen funds, though the exact amount funneled through each platform has not been disclosed. This follows an earlier alert from on-chain analyst Specter, who first identified the breach and estimated the total stolen assets at around $5.4 million.

The stolen assets included a diverse mix of tokens: approximately $4.3 million in USDC, 274 Wrapped Ether (WETH) valued at about $553,000, $434,000 in USDT, and $64,000 in PAYG tokens. The Gravity Bridge project, which facilitates asset transfers between different blockchain networks, has not yet issued an official statement regarding the incident or any potential recovery efforts.

Why This Matters for Crypto Users

This incident underscores persistent security vulnerabilities in cross-chain bridge protocols, which have become frequent targets for hackers due to the large pools of locked assets they manage. For users, it highlights the importance of monitoring project security audits and the risks associated with bridging assets between networks. The laundering of funds through major exchanges also raises questions about the effectiveness of know-your-customer (KYC) and anti-money laundering (AML) procedures in the crypto space.

Broader Context of Bridge Exploits

The Gravity Bridge hack is the latest in a series of high-profile bridge exploits that have collectively resulted in losses exceeding $2 billion over the past two years. Previous incidents include attacks on the Ronin Network, Wormhole, and Nomad bridges. These events have prompted increased scrutiny from regulators and have accelerated the development of more secure bridge architectures, including zero-knowledge proof-based solutions.

PeckShield’s report adds to a growing body of on-chain forensic evidence that helps track stolen funds and identify laundering patterns. The firm’s ability to trace the movement of assets through exchanges provides valuable intelligence for law enforcement and security teams working to recover stolen funds.

Conclusion

The Gravity Bridge exploit serves as a stark reminder of the risks inherent in decentralized finance (DeFi) infrastructure. With the hacker still holding a significant portion of the stolen ETH, the situation remains unresolved. The lack of an official statement from the Gravity Bridge team leaves the community in a state of uncertainty regarding potential reimbursement or recovery plans. As on-chain investigators continue to monitor the wallet, the broader crypto industry watches closely for lessons that could prevent future attacks.

FAQs

Q1: What is the Gravity Bridge?
The Gravity Bridge is a blockchain protocol that enables the transfer of assets between different blockchain networks, such as Ethereum and Cosmos-based chains. It relies on a network of validators to secure transactions.

Q2: How did the hacker launder the stolen funds?
According to PeckShield, the hacker used the cryptocurrency exchanges ChangeNOW and Binance to convert or move a portion of the stolen assets. The exact methods and amounts remain under investigation.

Q3: What should users do if they are affected?
Users who believe they may have been impacted by the Gravity Bridge exploit should monitor official project channels for updates. It is also advisable to revoke any approvals given to the bridge contract and avoid interacting with it until the team releases a statement.

This post Gravity Bridge Hacker Launders Stolen Crypto Through ChangeNOW and Binance, PeckShield Reports first appeared on BitcoinWorld.