88% of Nomad Bridge addresses were copycat accounts

Almost 90% of addresses that were involved in the Nomad Bridge hack have been identified as “copycats” with a method used to exploit a loophole in the Nomad smart contracts.

The hackers took $88 million USD worth of cryptocurrency in just a few hours at the beginning of the month, according to a report released by Coinbase. The blog, written by Coinbase’s threat intelligence researcher Peter Kacherginsky and senior associate of the investigations team Heidi Wilder, notes that an attack like this one has an impact on the industry as a whole:

“While the Nomad bridge compromise does not directly affect Coinbase, we strongly believe that attacks on any crypto business are bad for the industry as a whole and hope the information in the blog will help strengthen and inform similar projects about threats and techniques used by malicious actors.”

According to Coinbase’s research, the method the hackers used was by using the same code and modifying the target token, amount and recipient address. From there, the hackers could send cryptocurrency to themselves.


Source: Coinbase



Coinbase researchers conducted an autopsy of the attack and noted that the first two hackers were targeting Wrapped Bitcoin (wBTC) first, then USDC and then Wrapped Ether (wETH). These three cryptocurrencies were most present in the Nomad Bridge, making it easier for the original hackers to steal these tokens in particular.

What is a Bitcoin bridge?

A bridge like the Nomad Bridge exists as a tool for investors and traders to send cryptocurrencies from one blockchain network and receive them on a different network. Because most networks are siloed and don’t interact with one another, it’s not possible to send cryptocurrencies directly from one blockchain to another. A blockchain bridge stands to let users do this, by means of wrapping tokens (such as “Wrapped Bitcoin”) and offering a platform for networks to engage with each other.

For example, if you want to use a bridge to send a Solana coin to an Ethereum wallet, the Ethereum wallet will receive a token that has been wrapped but the bridge – which is essentially a token converted to an ERC-20 token that is operable with Ethereum’s network.

While it might the be biggest attack on a DeFi bridge, Nomad Bridge is not the first to suffer an attack. Previous attacks on bridges include Wormhole, which happened a week after Qubit was attacked for $80 million.

Related Articles

Tuttle Capital’s Latest ETF: Mimicking Congress’ Stock Picks

Tuttle Capital is basing the strategy of its newly proposed ETF on the mandatory stock disclosure filings of U.S. lawmakers.

MP Calls for Blockchain; Crypto Group Rebrands

Australian MP stated that blockchain technology could inject $60 billion into the economy, while the advocacy group feels otherwise.

Singapore Authorities Warn Businesses of Bitcoin Ransomware Threat

Singapore police advised businesses against paying ransom and asked them to report the incident to authorities immediately.

Telegram Launches In-App Currency’ Currency Stars’ for Digital Purchases

On Telegram's Fragment platform, Telegram Stars can be exchanged for Toncoin, a cryptocurrency valued at $18 billion.

See All