Ecosystem
Wallet
grid background
yellow banner logo
WAITLIST OPEN NOW
notification alert
SIGN UP

IoTeX Bridge Hacked In Private Key Exploit - Attacker Bridges Stolen Funds to Bitcoin Via THORChain

profile-kostiantyn-tsentsura
Kostiantyn Tsentsura1 hour ago
#Data Leak
IoTeX Bridge Hacked In Private Key Exploit - Attacker Bridges Stolen Funds to Bitcoin Via THORChain

A private key compromise gave an attacker unauthorized access to IoTeX's token safe on Feb. 21, draining assets worth an estimated $8 million or more before funds were converted to Ethereum and routed to Bitcoin (BTC) via THORChain.

The IoTeX team confirmed the breach but contested the damage figures circulating in the market, saying actual losses are lower than reported.

IOTX, IoTeX's native token, fell roughly 9–10% on the news, with trading volume surging over 500% within 24 hours.

What Happened

Blockchain security firm PeckShield confirmed the exploit on X, stating the hacker gained full control of the token safe through a compromised private key and extracted multiple assets including USDC, USDT, IOTX, WBTC, PAYG, and BUSD.

The attacker then swapped the stolen tokens for ETH and bridged approximately 45 ETH to Bitcoin addresses using THORChain - a cross-chain routing protocol with no centralized freeze mechanism.

Beyond the initial drain, the attacker allegedly exploited the same compromised access to mint 111 million CIOTX tokens, pushing total estimated damage toward $8.8 million to $9 million across all vectors. Three attacker wallet addresses have been publicly identified by on-chain analysts.

IoTeX's Response

IoTeX acknowledged the breach publicly by approximately 10:30 AM UTC on Feb. 21.

The team said it had coordinated with major cryptocurrency exchanges and security partners to trace and freeze the hacker's assets where possible, and described the situation as "under control."

The project did not disclose a confirmed loss figure, saying only that initial estimates are "significantly lower than circulating rumors."

Read also: Italian Tax Police Crack €500K Crypto Evasion Ring - Blockchain Was The Witness

Why It Matters

Recovery prospects are complicated by the attacker's use of THORChain, which processes cross-chain swaps without custodians and cannot be frozen by centralized parties. Once funds reach Bitcoin addresses via that route, on-chain traceability narrows considerably.

The IoTeX breach is part of a wider pattern. CrossCurve lost $3 million in a separate bridge exploit just three weeks prior, and January 2026 saw nearly $400 million in total cryptocurrency theft industry-wide, according to available security tracking data.

Private key compromises - rather than smart contract bugs - are increasingly the attack vector of choice, bypassing audited code entirely by targeting operational security.

Read also: Ripple CEO Puts 90% Odds On Crypto's Most Consequential U.S. Bill Passing By April

Disclaimer and Risk Warning: The information provided in this article is for educational and informational purposes only and is based on the author's opinion. It does not constitute financial, investment, legal, or tax advice. Cryptocurrency assets are highly volatile and subject to high risk, including the risk of losing all or a substantial amount of your investment. Trading or holding crypto assets may not be suitable for all investors. The views expressed in this article are solely those of the author(s) and do not represent the official policy or position of Yellow, its founders, or its executives. Always conduct your own thorough research (D.Y.O.R.) and consult a licensed financial professional before making any investment decision.
Related News
How One Person Lost $282M In Crypto Despite Using Hardware Wallet Security
Jan 16, 2026
A single victim lost more than $282 million worth of Bitcoin (BTC) and Litecoin (LTC) in what blockchain investigator ZachXBT described as a hardware-
UXLINK Loses $11.3 Million In Multi-Signature Wallet Hack
Sep 22, 2025
Web3 social media platform UXLINK confirmed that hackers stole $11.3 million in cryptocurrency from its multi-signature wallet, causing the company's
April 2025 Crypto Losses Surge 1,100% Amid $331M Bitcoin Heist
May 01, 2025
April 2025 has marked a critical inflection point in cryptocurrency security, with total losses from hacks, scams, and exploits skyrocketing to $364 m
Nearly $3 Billion Stolen From Cryptocurrency Platforms In 200 Security Breaches During 2025
Dec 31, 2025
The cryptocurrency sector lost nearly $3 billion to security breaches in 2025 despite a 51% decline in the number of attacks, according to blockchain
Bybit $1.5B Hack Explained: How Hackers Accessed Cold Wallets, Is Ethereum Compromised?
Feb 24, 2025
In the largest cryptocurrency heist to date, Seychelles-based exchange Bybit lost approximately $1.5 billion in Ethereum (ETH) on February 21, 2025, d
Related Research Articles
Binance Under Siege? Theory Behind $1B Crypto Meltdown Explained
Oct 13, 2025
Billions in losses. Three collapsing assets. An eight-day window of vulnerability. Inside the theory that last week's historic crypto meltdown wasn't
Why DEX Exploits Cost $3.1B in 2025: Analysis of 12 Major Hacks
Oct 27, 2025
Lately the cryptocurrency world witnessed another devastating lesson in the fragility of decentralized finance. BunniDEX, a promising decentralized
The Liquidity Black Box: How Market Makers Shape Prices on CEXs and DEXs
Sep 27, 2025
Professional crypto market-making now represents a sophisticated ecosystem where firms deploy advanced algorithms, massive capital, and cutting-edge t
Crypto’s Uncomfortable Truth: 16 Major Blockchains Can Freeze User Assets — Is Decentralization at Risk?
Nov 15, 2025
A new report from Bybit’s Lazarus Security Lab suggests many major blockchains aren’t as trustless as they seem. In an industry built on decentralizat
Cross-Chain Messaging: Comparing IBC, Wormhole, LayerZero, CCIP, and More
Aug 06, 2025
A fundamental transformation is quietly reshaping how digital assets and information flow across networks. What began as isolated ecosystems - each bl
Related Learn Articles
How Crypto Bridges Actually Work - And Why They Keep Getting Hacked
Apr 07, 2025
The blockchain revolution has ushered in a new era of decentralized systems, where independent networks like Ethereum, Solana, Avalanche, and Bitcoin
Can You Split a Bitcoin Private Key? Complete Guide to Crypto Ownership, Inheritance & Legal Issues 2025
Aug 14, 2025
The question of whether you can split a private key in half reflects a deeper challenge facing cryptocurrency holders in 2025: how do you manage share
Social Engineering Attacks in Crypto: 10 Proven Tips to Keep Your Digital Assets Safe
May 13, 2025
Social engineering has emerged as the predominant threat vector in the cryptocurrency ecosystem, exploiting human psychology rather than technical vul
Protect Your Crypto Exchange Account: Advanced Security Strategies Explained
May 19, 2025
Social engineering has become the leading threat in the cryptocurrency ecosystem, targeting human behavior instead of technical flaws to breach securi
Crypto Insurance 101: How to Protect Your Wallets, NFTs, and DeFi Positions
Aug 13, 2025
Cryptocurrency has created a new frontier of finance with vast opportunities – and equally vast risks. In the past decade, hackers have stolen billion