Buy Crypto
Pay with
USD
USD
Buy & Sell
Hot
Supports Visa, Mastercard, SEPA & more
P2P
0 Fees
Flexible trading, zero fees
Gate Card
Use your crypto for payments worldwide
Markets
Trade
Basic
Advanced
Futures
Futures
Access hundreds of perpetual contracts
CFD
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Stocks
CFD
U.S. stock CFD derivatives
US Stocks
Access real US stocks and ETFs
HK Stocks
Trade quality Hong Kong-listed stocks
Stock Futures
High leverage, 24/7 trading
Tokenized Stocks
Backed by real stock assets
IPO Access
Unlock full access to global stock IPOs
GUSD
Mint GUSD for Treasury RWA yields
Stocks Activities
Trade Popular Stocks and Unlock Generous Airdrops
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
IPO Access
Unlock full access to global stock IPOs
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
Investment
Square
Square
Post, share, and explore crypto trends
Live
moments live
Live crypto market analysis
Chat
Chat with crypto traders
News
What is happening in crypto
flower_head
More
Promotions
AI
Others
TradFi
2026 World Cup
Rewards
Square
Latest
Hot
News
Profile

Syscoin Cross-Chain Bridge Vulnerability Releases 50 Billion SYS Tokens; Funds Have Been Returned and Burned

WuSaidBlockchainW
robot
Abstract generation in progress
Syscoin released a technical post-mortem, saying that on June 7, its UTXO-to-NEVM cross-chain bridge was exploited by malicious UTXO destruction transactions that created ambiguity in asset identification, causing the bridge contract on the NEVM side to incorrectly release 50 billion native SYS. The vulnerability stemmed from inconsistent cross-layer interpretation of the same transaction between Syscoin Core and the NEVM relay: Core could recognize it as an attacker-defined asset, while the relay interpreted it as native SYS. Syscoin stated that after the team traced the funds’ flow and contacted the attacker using on-chain information, the 50 billion SYS were returned to the official recovery address, and were then destroyed via standard OP_RETURN transactions, making them no longer spendable by the protocol and restoring the circulating supply to the expected level. The cross-chain bridge is still in a paused state; the team has fixed the relay logic to reject multi-asset, duplicate asset commitments, or any asset destruction proof with an unclear asset identity.
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • 3
  • Repost
  • Share
Comment
Add a comment
Add a comment
NftClosetGhost
· 4h ago
Attackers still have some bottom line; they returned the money.
But I'm a bit panicked about this relay logic patch; will they come up with some explanation conflict next time?
View OriginalReply0
GateUser-08ae47f3
· 4h ago
Is it possible for such a basic mistake like inconsistent cross-layer explanations to happen? Core and relay each say their own thing, the bridge contract is completely confused, 5 billion just released without hesitation, luckily it was recovered.
View OriginalReply0
TidepoolQuant
· 4h ago
OP_RETURN burn looks satisfying—supply returns to normal. This bridge just needs to be repaired properly; multiple-asset commitments can all be mixed in. How did the audit pass?
View OriginalReply0

  • Pinned

Sitemap