Gravity Bridge Hack: $5.4M Stolen and Swapped to ETH | TokenTopNews

Gravity Bridge, the cross-chain bridge connecting Cosmos and Ethereum  ETH +0.00% , has been exploited for approximately $5.4 million. The attacker swapped the stolen assets into ETH, a move that complicates recovery efforts and signals active post-exploit fund management.

What Happened in the Gravity Bridge Exploit

Reports indicate that roughly $5.4 million in assets were drained from Gravity Bridge. The full attack vector has not been publicly confirmed, and the incident appears to be ongoing as teams work to assess the damage.

It remains unclear which specific tokens were initially stolen or whether the exploit targeted a smart contract vulnerability, a validator compromise, or another weakness. Users who had funds on Gravity Bridge should monitor official channels for updates on whether the bridge has been paused.

The incident adds to a pattern of bridge exploits that have shaken confidence in cross-chain infrastructure. Earlier this year, Circle froze $12.6 million in user funds tied to the Zama Protocol contract, underscoring how quickly issuers and teams must act when exploits surface.

From Stolen Assets to ETH

The attacker converted the stolen funds into ETH, a pattern frequently observed in DeFi exploits. Converting to ETH gives the attacker access to deep liquidity and multiple potential obfuscation routes on the Ethereum network.

This conversion is a critical moment for on-chain investigators. Once assets sit as ETH in an attacker-controlled wallet, analysts can track whether the funds move toward mixers, are bridged to other chains, or remain idle. The speed of the swap suggests the attacker had a pre-planned exit strategy.

No confirmed transaction hashes or wallet addresses tied to the exploit have been publicly shared at the time of publication. Security firms and on-chain analysts are expected to release traced fund flows as the investigation progresses. Readers can monitor flagged addresses through Etherscan once they are disclosed.

Immediate Impact and What to Watch Next

Cross-chain bridges remain one of the most frequently targeted categories in DeFi security incidents. While smaller than some of the largest bridge exploits on record, this loss is significant enough to draw ecosystem-wide scrutiny of Gravity Bridge’s security posture and audit history.

Users should watch for an official post-mortem from the Gravity Bridge team, which would clarify the exploit mechanism and whether any funds can be recovered. Centralized exchanges may also be asked to freeze deposits from attacker-linked wallets, similar to enforcement patterns seen in previous stablecoin issuer interventions.

The exploit arrives during a period of cautious institutional sentiment, with recent U.S. spot Bitcoin ETF outflow data reflecting broader market unease. Meanwhile, infrastructure security remains a central topic at industry events such as the Cyber Revolution Summit in the Philippines.

For now, Gravity Bridge users should avoid interacting with the protocol until the team issues a formal status update confirming whether the bridge is safe to use.

Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency and digital asset markets carry significant risk. Always do your own research before making decisions.