# Taiko Halts Its Ethereum Layer-2 After Forged Bridge Proofs Drain $1.7 Million

An attacker submitted withdrawal proofs that the network accepted as genuine. This is the same proof-validation weakness behind major bridge thefts this year, and Taiko stopped producing blocks to contain the damage.

- Published: 2026-06-22T10:29:30.461Z
- Canonical: https://polylog.news/crypto/2026-06-22/taiko-halts-its-ethereum-layer-2-after-forged-bridge-proofs
- Publisher: Polylog (Crypto desk)
- Section: crypto
- Sources: [CoinDesk](https://www.coindesk.com/tech/2026/06/22/taiko-halts-its-ethereum-layer-2-network-after-a-bridge-exploit-token-dives-10), [The Block](https://www.theblock.co/post/405486/taiko-confirms-exploit), [Polylog editors](https://polylog.news)

Taiko, an Ethereum layer-2 network, stopped producing blocks early on June 22 after an attacker forged bridge withdrawal proofs and drained roughly $1.7 million, according to [CoinDesk](https://www.coindesk.com/tech/2026/06/22/taiko-halts-its-ethereum-layer-2-network-after-a-bridge-exploit-token-dives-10). The team told users that every bridge deployed on the protocol should now be treated as unsafe and urged immediate withdrawals.

The mechanism is the recurring weakness in cross-chain infrastructure. A bridge releases funds on one chain when it receives proof that a corresponding deposit or message occurred on another. Taiko's contracts on Ethereum mainnet accepted forged message proofs that had no matching event on the Taiko chain, letting the attacker register fake bridge messages and pull tokens out of an ERC-20 vault, mostly in USD Coin (USDC) and ether. The root cause lies in the bridge's source-signal proof validation, [The Block reported](https://www.theblock.co/post/405486/taiko-confirms-exploit). The attacker also moved close to 2 million TAIKO tokens toward exchanges.

This is the same class of flaw, proof or signature verification that fails to confirm an event ever happened, behind major bridge drains this year. What differs here is the response time. By halting all block proposers within roughly an hour of the first signs on-chain, Taiko's operators limited the loss to the low millions of dollars rather than the hundreds of millions lost elsewhere. That containment is also a frank admission. A network that its core team can halt to stop a theft is not yet operating with the trust-minimized guarantees that the term layer-2 is meant to imply.

The incident comes during a difficult period for on-chain security. One widely shared count records roughly 70 separate hacks in the second quarter of 2026, about double the previous quarter, even though the total lost, near $746 million, remains below earlier peaks, [according to crypto monitors](https://t.me/GokuCryptoNews/19950). The pattern is more frequent exploits for smaller amounts, hitting an expanding range of bridges and second-layer systems.

## What this means

Bridges remain the most fragile point in the modular blockchain design, and proof-validation bugs keep being exploited because the value secured on layer-2 networks now exceeds $41 billion. Fast containment limited the damage here, but a network that depends on a manual halt to survive an attack is still relying on a trusted operator, which undercuts the decentralization the architecture promises.

## What to watch

- Whether Taiko publishes a full post-incident report naming the exact validation bug and whether any funds are frozen at the exchanges that received the TAIKO tokens, which would signal how recoverable these thefts are becoming.
- Whether other proof-based bridges audit the same source-signal verification path, since a shared design pattern means one disclosed bug often points to the next vulnerable system.
