Polkadot Hyperbridge Exploit: 1 Billion DOT Minted and Sold

Polkadot Hyperbridge Exploit: 1 Billion DOT Minted and Sold

First seen 13 Apr 2026, 09:43 UTC En.BloomingbitMexc.CoTheblock.CoPanewslabCryptorank+11 88% similarity 66.0

Article Content

Browse articles
ThreatCluster

On April 13, 2026, a vulnerability in the Hyperbridge gateway contract on Ethereum allowed an attacker to mint 1 billion unauthorized Polkadot (DOT) tokens. The exploit was facilitated by forging messages to gain administrative control over the bridged DOT token contract. The attacker subsequently sold the minted tokens for approximately $237,000 worth of Ether. This incident specifically affected DOT tokens bridged to Ethereum, while the native DOT and Polkadot ecosystem remained secure. The Hyperbridge protocol has been paused for investigation and remediation. The exploit highlights ongoing vulnerabilities in cross-chain interoperability solutions. The incident has raised concerns about the security of decentralized finance (DeFi) infrastructures. Security firms CertiK and BlockSec are investigating the attack vector and its implications.

Key Points: • 1 billion unauthorized DOT tokens were minted and sold due to a Hyperbridge exploit. • The attack did not affect the native Polkadot ecosystem or DOT bridged through other protocols. • Hyperbridge has been suspended for investigation following the incident.

ThreatCluster AI

Timeline

2026-04-01
Hyperbridge published an April Fools' joke about a hack.
2026-04-13
Actual exploit on Hyperbridge occurred, minting 1 billion DOT.
2026-04-13
Polkadot confirmed the exploit and paused Hyperbridge operations.

Community

Browse all →