Just caught wind of another crypto hack that's been making rounds in the security circles. ZetaChain, the Cosmos-compatible L1 chain, got hit by attackers who exploited team-linked wallets. The team moved fast to shut down cross-chain services for over 15 hours to prevent cascading losses, which honestly is the right call in these situations.

What's interesting about this one is how surgical the attack was. The vulnerability lived in the GatewayZEVM contract - basically a bridge contract that lacked proper access control. Attackers were able to craft malicious cross-chain calls without sufficient backing, tricking the relayer into sending real funds on the destination chain. Classic bridge exploit playbook. The good news is they contained it early and only USDC got hit, with losses staying under $10k. No user funds were touched, just team wallets.

Here's what caught my attention though - this is the kind of crypto hack news that keeps repeating because the vulnerabilities are still there on so many chains. ZetaChain sits in the Cosmos ecosystem pushing for permissionless cross-chain compatibility, but the network's basically a ghost town. We're talking single-digit daily users and just $8 in fees per day. After the October market correction last year, they're holding less than $1M in DeFi contracts. Yet still got targeted.

The attacker probably used this as a probe run. Testing whether similar bridge contracts on other Cosmos chains have the same blind spots. That's what makes this crypto hack news worth paying attention to - it's not just about ZetaChain, it's a signal that every chain with bridge infrastructure is in the crosshairs.

Interestingly, the ZETA token barely moved. It's been crushed since launch, down over 96%, so this hack didn't really change the narrative. The token wasn't even the target - attackers went straight for the bridge contract and cross-chain funds. Over on the broader DeFi front, April was absolutely brutal. We're looking at over $624M in total losses from hacks and exploits that month alone, highest since February 2025. The Drift Protocol hack kicked things off and then the floodgates opened.

This whole pattern shows why security audits and proper access controls aren't optional anymore. Every smart contract is a target, doesn't matter if it's on a major chain or some smaller project. The bar for Web3 security keeps getting higher, and the cost of getting it wrong is real. Current ZETA price sitting around $0.06, but that's almost beside the point when the real issue is whether these protocols can actually be trusted with cross-chain operations.