Decentralized protocol THORChain suffered a massive exploit, draining nearly $10.8 million from the platform on Friday. The attack comes at a time when the entire crypto sector is witnessing a rise in hacks and scams, adding on to investor worries.
The exploit took place across four different blockchains viz Bitcoin, Ethereum, BNB Chain, and Base, forcing the protocol to halt its services. According to Arkham Intelligence, the attacker’s wallets presently include 3,443 ETH worth $7.77 million, 36.85 BTC worth $2.97 million, and 96.6 BNB worth $66,000.
The hack triggered fresh panic across the DeFi market, sending selling pressure sharply higher. Following this suit, THORChain’s native token RUNE plunged more than 14 percent shortly after the exploit was disclosed.
ZachXBT unveils THORChain exploit
The initial alerts regarding the vulnerability were issued by well-known onchain analyst ZachXBT. Through social media updates, Zach highlighted some irregularities involving activities connected with the router mechanism of THORChain.
The abnormal transactions attracted immediate attention in the crypto world due to the swift transfers of substantial sums of money through various blockchain networks.
According to ZachXBT, the attackers moved roughly $7.2 million worth of digital assets, including USDT, USDC and wrapped Bitcoin, before eventually swapping much of the stolen funds into ETH.
Early estimates suggested the losses were slightly above $7.4 million, but ZachXBT later revised the numbers upward, saying the total amount stolen could now exceed $10 million.
Blockchain security firm PeckShield also confirmed the exploit, estimating that attackers stole around 36.75 BTC worth close to $3 million, along with another roughly $7 million in assets taken from systems operating across Ethereum, BNB Chain and Base.
Crypto exploits rise despite definitive measures
Crypto exploits continue to remain one of the most persistent and damaging problems across the digital asset industry. At present, major decentralized finance platforms are still regularly falling victim to large-scale attacks.
In April alone, losses connected to Drift Protocol and KelpDAO reportedly crossed a combined $600 million, underlining the scale of security vulnerabilities that continue to affect parts of the crypto ecosystem.
Even after many years of advancements and audits, fraudsters and hackers have become immune to developments made by the sector, exploiting any loopholes that may arise in committing their crimes.
Cross-chain bridges and liquidity protocols are one of the most commonly attacked sectors of DeFi because they are responsible for handling huge sums of capital flowing between various blockchain networks.
The complexity and interconnectivity involved within multichain protocols can make them appealing targets to hackers seeking vulnerabilities. According to the blockchain analysis firm Chainalysis, exploits targeting bridges alone have cost more than $2.8 billion in cumulative loss since 2021, making them one of the most costly types of hacks in crypto history.
As of the time of writing, no post-mortem or technical documentation has been issued explaining precisely how the exploit occurred within THORChain. The silence so far has left uncertainty around the precise attack vector and the vulnerabilities that may have been used by the attackers, making market participants wonder about the platform’s plans.



