The Verus-Ethereum cross-chain bridge has fallen victim to a significant security breach, resulting in the theft of multiple digital assets. According to data provided by blockchain security firm PeckShield on May 18, 2026, the exploiter successfully drained a variety of tokens and subsequently converted them into Ethereum (ETH). The total value of the stolen funds is estimated to be approximately $16.4 million based on current market rates, marking one of the notable DeFi exploits of the second quarter.
Details of the Asset Drain and Conversion
The security incident involved the unauthorized withdrawal of diverse assets held within the bridge's liquidity pools. The monitoring report specifies that the attacker seized 103.6 tBTC (tokenized Bitcoin), 1,625 ETH, and 147,000 USDC stablecoins. Shortly after the breach, the perpetrator utilized decentralized exchange protocols to swap the entirety of the stolen holdings into a single asset.
- Total ETH Consolidated: Approximately 5,402.4 ETH
- Current Storage: Address starting with 0x65Cb
- Initial Funding Source: Tornado Cash
Cross-chain bridges remain a frequent target for malicious actors due to the complexity of their smart contract interactions and the high volume of liquidity they secure.
Attacker Methodology and Traceability
Blockchain forensics indicate that the attack was premeditated. Approximately 14 hours prior to the main exploit, the attacker’s wallet received 1 ETH as initial funding. This capital was moved through Tornado Cash, a privacy-enhancing mixing service, in an attempt to obscure the source of the gas fees required to execute the exploit. The use of such services is a common tactic among cybercriminals to maintain anonymity while interacting with the Ethereum blockchain.
The attacker converted the stolen assets to approximately 5402.4 ETH, which is currently held at an address starting with 0x65Cb.
As of the current report, the funds remain stationary in the identified 0x65Cb address. Security analysts and exchange operators are likely monitoring this wallet to flag any attempts to off-ramp the assets into fiat currency or move them to centralized trading platforms. The Verus team has yet to release a detailed post-mortem regarding the specific vulnerability exploited in the bridge's architecture.
Frequently Asked Questions
Quick answers to the most common questions about this topic.
For educational purposes only. Nothing here constitutes financial or investment advice. Crypto markets are highly volatile — always DYOR before making any decisions.
Fact-checked per our editorial policy. We maintain strict independence from advertisers. Spot an error? Let us know.