Ethereum layer-2 Taiko halts block production after $1.7m bridge exploit

Taiko, an Ethereum layer-2 network, halted block production and urged users to pull their funds from all of its bridges on Monday after confirming a security breach that drained roughly $1.7 million in assets. The incident is the latest in a long line of attacks targeting the cross-chain bridges that connect blockchains, a category that has proven one of the most persistent weak points in decentralized finance.

In an emergency notice posted early on Monday, the project said it had confirmed a compromise of its chain-state verification mechanism, warning that the security assumptions underpinning every bridge deployed on Taiko could no longer be relied upon. The team advised users to withdraw their funds from all bridges immediately, asked centralized exchanges to suspend deposits of its native token, and said all of its block producers had stopped creating new blocks while it investigated, effectively bringing the network to a standstill as a containment measure.

The breach was first flagged by the on-chain security firm Blockaid, which identified the likely root cause as a flaw in how the bridge validated source signals. According to its analysis, crafted message proofs were accepted as valid on the Ethereum mainnet even though no corresponding legitimate events existed on the Taiko chain. That gap allowed the attacker to register and later redeem fraudulent bridge messages, triggering unauthorized releases of assets from a token vault.

Estimates of the damage varied as the situation developed. Blockaid initially put the losses at more than $1 million, while the analytics firm PeckShield later estimated the total at around $1.7 million, primarily in widely held stablecoins and ether. On-chain trackers reported that the attacker had begun cashing out, moving close to two million of Taiko's native tokens, worth under $200,000, toward an exchange, with some of those funds reportedly frozen after rapid coordination between the project and exchange partners.

Taiko is built as a so-called based rollup, a design that relies on Ethereum's own validators to sequence its transactions in an effort to stay closely aligned with the main network. That architecture makes state verification central to how its bridges confirm that an action on one chain is valid on the other, which is precisely the layer the attacker appears to have subverted. The team had not published a full post-mortem, a complete list of affected bridges, or a recovery plan, describing the situation as developing.

The episode lands amid a punishing stretch for blockchain security. Trackers counted more than 20 crypto hacks in June alone, and bridges in particular have accounted for billions of dollars in cumulative losses over the years because of their role in moving assets between networks and the complexity of the verification systems that span them. Recent weeks had already seen exploits at several other cross-chain protocols.

For now, the priority is containment, and the broader lesson for the sector is a familiar one: the connective tissue between blockchains remains a high-value target, and incidents like this add pressure on rollup teams to harden the verification layers between layer-2 networks and Ethereum. Whether Taiko can recover any of the stolen assets is likely to depend on how quickly exchanges can freeze the flagged wallets as the funds move.