Morning Edition · Monday, June 22, 2026
Taiko Halts Its Ethereum Layer-2 After Forged Bridge Proofs Drain $1.7 Million
An attacker submitted withdrawal proofs that the network accepted as genuine. This is the same proof-validation weakness behind major bridge thefts this year, and Taiko stopped producing blocks to contain the damage.

Taiko, an Ethereum layer-2 network, stopped producing blocks early on June 22 after an attacker forged bridge withdrawal proofs and drained roughly $1.7 million, according to CoinDesk. The team told users that every bridge deployed on the protocol should now be treated as unsafe and urged immediate withdrawals.
The mechanism is the recurring weakness in cross-chain infrastructure. A bridge releases funds on one chain when it receives proof that a corresponding deposit or message occurred on another. Taiko's contracts on Ethereum mainnet accepted forged message proofs that had no matching event on the Taiko chain, letting the attacker register fake bridge messages and pull tokens out of an ERC-20 vault, mostly in USD Coin (USDC) and ether. The root cause lies in the bridge's source-signal proof validation, The Block reported. The attacker also moved close to 2 million TAIKO tokens toward exchanges.
This is the same class of flaw, proof or signature verification that fails to confirm an event ever happened, behind major bridge drains this year. What differs here is the response time. By halting all block proposers within roughly an hour of the first signs on-chain, Taiko's operators limited the loss to the low millions of dollars rather than the hundreds of millions lost elsewhere. That containment is also a frank admission. A network that its core team can halt to stop a theft is not yet operating with the trust-minimized guarantees that the term layer-2 is meant to imply.
The incident comes during a difficult period for on-chain security. One widely shared count records roughly 70 separate hacks in the second quarter of 2026, about double the previous quarter, even though the total lost, near $746 million, remains below earlier peaks, according to crypto monitors. The pattern is more frequent exploits for smaller amounts, hitting an expanding range of bridges and second-layer systems.
- If true, who benefits
Taiko's core team, whose fast halt limited losses and lets it frame a centralized intervention as responsible crisis management.
- The nuance
Multiple independent firms (PeckShield, Lookonchain, Blockaid) confirm the $1.7M chain-state-verification drain, but the load-bearing nuance is that a network a small team can pause on command is not the trust-minimized layer-2 the label implies.
An open-source-intelligence read of how likely this story is true with its real nuance, not a judgment of any outlet. It assesses the claim, weighing independent and adversarial reporting. How we label confidence.
What this means
Bridges remain the most fragile point in the modular blockchain design, and proof-validation bugs keep being exploited because the value secured on layer-2 networks now exceeds $41 billion. Fast containment limited the damage here, but a network that depends on a manual halt to survive an attack is still relying on a trusted operator, which undercuts the decentralization the architecture promises.
What to watch
- Whether Taiko publishes a full post-incident report naming the exact validation bug and whether any funds are frozen at the exchanges that received the TAIKO tokens, which would signal how recoverable these thefts are becoming.
- Whether other proof-based bridges audit the same source-signal verification path, since a shared design pattern means one disclosed bug often points to the next vulnerable system.
Observations to monitor, not financial advice.
Synthesized from: CoinDesk · The Block · Polylog editors
Part of a tracked trend
Bridge and Mint Exploits Sustain Heavy DeFi Losses
Over 3-6 months, recurring bridge proof-validation and unauthorized-mint exploits keep monthly DeFi losses elevated, including drains of deprecated contracts.
More from this edition
- Ethereum Researchers Pitch a Native zkEVM That Scales Bandwidth, Not Just Speed
- Privacy Chains Sharpen Their Pitch: Confidentiality as a Default, With a Controlled Off-Switch
- Ethereum Proposal Would Let Validators Divert Up to 10% of Staking Rewards to Fund the Network
- Bank of England Drops Holding Caps in Final Stablecoin Rules
- Microsoft Flags USB-Borne Wallet Malware as a Distinct Attack Surface Grows
- CME Sues the CFTC Over How Crypto Perpetual Futures Got Approved
- Bitcoin Developers Move to Retire a Fee Feature That Became a Tracking Fingerprint
- UBS Tokenized Money-Market Fund Becomes Trading Collateral on Bybit
- Prediction Markets Doubt the CLARITY Act Despite Talk of Imminent Passage
- Solana Becomes a Settlement Choice for Banks and Exchanges Expanding On-Chain
- Bitcoin Holds Near $64,000 as ETF Outflows Reach a Sixth Week