Alephium

May 30, 2026·Ethereum·Bridge guardian-key compromise

$815K

total loss

StatusConfirmed

An attacker drained about $815K from Alephium's TokenBridge on Ethereum. The bridge mints its wrapped ALPH token and releases funds only when a quorum of its guardians sign off, and the attacker got hold of 3 of the 4 guardian keys. With those, they signed fake approval messages that told the bridge to mint 13.76 million wrapped ALPH out of nothing, more than the entire amount that existed before, and to hand over its USDT, USDC, WBTC and WETH. The funds were swapped to ETH and spread across dozens of wallets. The bridge's code worked correctly. The keys behind its signatures were compromised.

Other bridges and protocolssafe

The TokenBridge contract code itselfsafe(No code bug; the guardian signing keys were compromised.)

Funds held in the Alephium TokenBridge on Ethereumdrained(About $815K: USDT, USDC, WBTC, WETH plus a 13.76M wrapped ALPH mint.)

Wrapped ALPH holdersdrained(13.76 million minted, more than the prior supply, then dumped, which crashes the token.)

Recovery of drained fundsunknown(Swapped to ETH and dispersed across many wallets; no recovery announced.)

What the score saw

Alephium is not one of the protocols we publish a live safety score for, so we had no prior reading on it. The weakness here is the kind our model weighs heavily for bridges: a small set of signing keys can authorize minting tokens and releasing funds, with no on-chain delay or rate limit to slow an attacker who gets hold of enough of those keys.

Exploit anatomy

The attacker controlled 3 of the 4 guardian keys behind Alephium's TokenBridge on Ethereum. Using those keys they signed fake approval messages and submitted them to the bridge, which minted 13.76 million wrapped ALPH out of nothing to their wallet and released the bridge's USDT, USDC, WBTC and WETH from custody. The wrapped ALPH token was then dumped to ETH through a decentralized exchange and the proceeds were fanned across dozens of fresh wallets.

FUND FLOW

ROOT CAUSE / ENABLERS

FUND FLOWROOT CAUSE / ENABLERS

Stage 1 · TAKEOVER

Alephium TokenBridge

custody + mint authority

0x579a3bde...18dd43

~ $815K · dominant

Attacker wallet

3 of 4 guardian keys

0x6681ebC8...06921d

signed fake approvals

3 of 4 guardian keys

0x6681...921d

key compromise

Forged approval messages

Wormhole-style quorum VAA, signature check passed

subverted signer

No mint ceiling or rate limit

completeTransfer honors any quorum-signed message, no per-message value cap and no on-chain delay

Stage 2 · MINT AND RELEASE

13.76M wALPH minted + custody released

proof = quorum-signed

0x06cc...c6b4

$815K released, ~107% of prior supply

Mint out of nothing accepted

200,967 USDT, 17,594 USDC, 0.3353 WBTC, 5.18 WETH released, then 13,757,076 wALPH minted in one minute

Stage 3 · SWAP

ALPH dumped to ETH

wALPH to ETH

0x590f...89a6

via DEX, in 100K and 1M batches

No payout velocity cap

nothing rate-limited the outflow or the mint

missing control

Stage 4 · DISPERSAL

Dozens of fresh sub-wallets

ETH fanned out

0x6681ebC8...06921d

20 to 41 ETH chunks

No anomaly pause role

no independent monitor or freeze to stop the drain mid-sequence

missing control

Untouched

Safe. Other bridges and protocols, and the TokenBridge contract code itself, were not affected.

Mechanism

Three of four guardian signing keys were compromised. The attacker signed fake approvals that completeTransfer honored as a quorum-signed message, minting 13.76M wrapped ALPH and releasing custody. Not a contract bug.

Source

blackhart.io/hacks/alephium-tokenbridge-guardian-forged-vaa

verified on-chainwALPH dumped to ETH, fanned across dozens of wallets

Full forensic detail

Step-by-step reconstruction, root cause, counterfactuals, remediation, and disclosure timeline.

Exploit anatomy

Alephium's TokenBridge on Ethereum mints its wrapped ALPH token and releases custodied funds when it receives an approval message signed by a quorum of its guardians. For a four-guardian set, three signatures are enough.

The attacker obtained 3 of the 4 guardian keys. Three independent guardians being compromised at once points to a breach of the guardian signing setup rather than three separate key thefts.

The attacker first ran a test, minting 1 ALPH through a forged approval message to confirm the path worked.

tx:0x7b2379d3...ddde10

Within about a minute, forged approvals released 200,967 USDT, 17,594 USDC, 0.3353 WBTC and 5.18 WETH from the bridge's custody to the attacker.

tx:0x928e369e...02bc40

A final forged approval minted 13,757,076 wrapped ALPH out of nothing, roughly 107 percent of the entire wrapped supply that existed beforehand.

tx:0x06cc0f36...24c6b4

The attacker forwarded the stablecoins and WBTC to a second wallet, dumped the minted ALPH to ETH through a decentralized exchange, and fanned the proceeds across dozens of fresh wallets over the following hours.

Root cause

Alephium's TokenBridge is a Wormhole-style bridge that honors any approval message signed by a quorum of its guardian set, three of four. Three guardian keys were compromised, so the attacker could forge approvals the bridge accepted as authoritative, minting 13.76 million wrapped ALPH and releasing USDT, USDC, WBTC and WETH from custody. The on-chain signature check worked exactly as designed. The off-chain guardian signing authority was the failure surface, and there was no on-chain rate limit or delay to blunt the damage.

// Wormhole-style bridge: any quorum-signed VAA is honored
function completeTransfer(bytes memory encodedVm) public {
  // verify guardian signatures on the VAA, then mint or release custody
  // no per-message value cap, no rate limit, no mint ceiling
}

Prevention analysis

Similar incidents

Wormhole (2022)

Same bridge family and entry point: a forged approval message passed to completeTransfer minted wrapped tokens. There it was a signature-verification bug; here the guardian keys were compromised. Same end state.

Gravity Bridge (2026)

Same week, same class: the validators behind a bridge had their signing authority subverted, and the bridge honored the messages they signed. See our Gravity Bridge report.

Nomad (2022)

Bridge message forgery leading to a custody drain; the bridge trusted messages it should not have. Same architecture-level failure.

Remediation

1.Rotate the entire guardian key set and audit how three keys were compromised at once (shared infrastructure, signing pipeline, or key custody).

2.Pause the bridge until the guardian signing setup is known clean.

3.Plan a wrapped ALPH migration or snapshot; 13.76 million tokens minted from nothing cannot be unminted on-chain.

4.Recommended for any bridge of this design: add per-message and per-period limits on minting and custody release, plus a delay on large transfers and guardian-set changes.

5.If you hold wrapped ALPH or bridged assets through Alephium, treat funds that were in the Ethereum bridge as at risk; there is no automatic reversal.

Timeline

2026-05-30Test mint of 1 wrapped ALPH through a forged approval message, confirming the path.

2026-05-30Forged approvals release USDT, WBTC, USDC and WETH from the bridge's custody to the attacker.

2026-05-30A forged approval mints 13.76 million wrapped ALPH, about 107 percent of the prior supply.

2026-05-30Attacker forwards stablecoins and WBTC, dumps ALPH to ETH through a decentralized exchange, and fans the proceeds across dozens of wallets.

2026-05-30Blockaid publishes detection and attribution. BlackHart verifies the bridge, the 13.76M mint, the four custody releases, and the >100% of prior supply on-chain and publishes this report.

Sources

Blockaid on X Etherscan, 13.76M ALPH mint Etherscan, Alephium TokenBridge Etherscan, wrapped ALPH token Etherscan, attacker wallet

Continuous adversarial monitoring

Get your protocol scored across 12 dimensions, or request ongoing coverage.