Verus Bridge Loses $11.58M in Latest DeFi Hack

Another cross-chain bridge has been drained. Verus Bridge lost $11.58 million in an exploit that adds to a growing list of infrastructure attacks in May. The hack hit the bridge's smart contract, allowing the attacker to withdraw funds from liquidity pools that support cross-chain transfers.

The Verus Bridge Exploit: $11.58M Gone

The attack targeted the bridge's core contract, not a front-end or user wallet. That distinction matters. Bridge exploits typically drain pooled liquidity, meaning all users with funds in the bridge's smart contract face exposure. Verus Bridge operates as a cross-chain protocol connecting multiple networks, so the stolen assets likely include wrapped tokens and native Verus tokens held in reserve.

Initial reports show the attacker extracted the full $11.58 million in a single transaction or a short series of transactions. The bridge team has not yet released a post-mortem or confirmed whether any funds are recoverable. Withdrawals have been halted on the bridge, a standard emergency response that also locks legitimate users out of their funds.

Exposure and Affected Assets

Anyone who had assets bridged through Verus at the time of the exploit is directly exposed. The bridge's liquidity pool is now depleted, meaning users cannot redeem their bridged tokens for the underlying native assets. The affected chains and specific tokens have not been fully disclosed, but cross-chain bridge hacks typically impact wrapped versions of Bitcoin, Ethereum, and stablecoins.

For traders, the immediate risk is that the bridge may not resume operations. If the team cannot recover funds or raise replacement capital, the bridged tokens could become worthless. That scenario has played out in previous bridge hacks, where the project either shut down or issued a new token that traded at a fraction of the original value.