Hyperbridge Initiates $50K Bug Bounty Following $237K Exploit

Severity: Medium (Score: 54.9)

Sources: Cryptonews, Bitget

Summary

Hyperbridge has launched a public bug bounty program on HackenProof, offering rewards up to $50,000 for critical vulnerabilities. This initiative follows an exploit in April where an attacker minted approximately 1 billion fake $DOT tokens on Ethereum, resulting in a loss of $237,000. The bounty program invites independent researchers to identify vulnerabilities in the Hyperbridge protocol, covering issues like logic flaws and cross-chain message spoofing. Rewards range from $200 for low-severity findings to $50,000 for critical vulnerabilities. Testing must occur on local forks, and live attacks are prohibited. The program aims to enhance security after the previous exploit highlighted significant risks associated with cross-chain bridges. Hyperbridge's code will be under increased scrutiny as it seeks to mitigate future vulnerabilities. Key Points: • Hyperbridge offers up to $50,000 for critical vulnerabilities in its new bug bounty program. • An April exploit led to the minting of 1 billion fake tokens, costing $237,000. • The bounty program prohibits live infrastructure attacks and requires testing on local forks.

Key Entities

• Cross-chain Message Forgery (attack_type)
• Reentrancy Attack (attack_type)
• Zero-day Exploit (attack_type)
• Hyperbridge (company)
• Ethereum (company)
• Polkadot (company)
• CWE-287 - Improper Authentication (cwe)
• CWE-862 - Missing Authorization (cwe)
• BNB Chain (platform)