Hacker obtained only 108 ETH after generating 1 billion counterfeit DOT tokens., 2026/04/13 12:27:00

An unidentified individual targeted the Hyperbridge cryptocurrency protocol on the Ethereum network: the hacker forged an inter-network message from the Polkadot platform and exploited a vulnerability to gain administrative access to the native DOT token contract. This was reported by analysts from CertiK, a company specializing in blockchain security.

In a single transaction, the perpetrator deployed two contracts: a master contract and a supplementary one. The supplementary contract facilitated bypassing the verification check, enabling the execution of malicious actions, which resulted in the transfer of administrative and minting rights of the DOT contract to the attacker.

Subsequently, the hacker generated approximately 1 billion DOT—around 2805 times the stated token supply on Ethereum. A portion of the coins was exchanged for 108.2 ETH, which was transferred to an external wallet. At the time the attack was detected, the funds remained in this address, CertiK emphasized.

Due to low liquidity in the Hyperbridge pools, the actual earnings of the attacker were relatively modest. Despite the issuance of 1 billion tokens, the price of DOT fell by about 4.8%—to $1.16. Experts noted that had the hacker chosen a different network, such as Polytope, the damage would have been greater.  

This marks the second attack on the protocol within the same day. Earlier, the perpetrator withdrew around $12,000 in MANTA and CERE tokens using a similar attack method, CertiK reported. 

At the end of last week, unknown individuals stole over $400,000 in USDT stablecoins from the Aethir cryptocurrency project’s system.