Taiko, an Ethereum Layer 2 rollup, stopped block production after an exploit hit its bridge contract. The team is urging everyone to withdraw their funds while they investigate.
Blockaid, an onchain security firm, traced the root cause to a flaw in how Taiko’s bridge validates source-signal proofs. In plain terms: the bridge wasn’t properly checking whether incoming transfers were legit before processing them.
This is the kind of bug that keeps DeFi security researchers up at night. Bridge contracts sit at the intersection of two chains, holding real assets on one side and minting representations on the other. If the verification logic has a gap, an attacker can mint tokens on one end that are backed by nothing.
Taiko hasn’t disclosed a dollar figure for the exploit yet. The team says they’re working on identifying the root cause and will share more details soon.
If you have funds bridged to Taiko, the safest move right now is to withdraw them. Don’t wait for an all-clear.
