A security incident has once again struck the crypto sector after a hacker reportedly minted up to 1 billion DOT tokens on the Ethereum network. According to a report by CertiK, the attack was caused by a vulnerability in the Hyperbridge gateway and generated approximately $237,000 in profit. Although the number of tokens minted was extremely large, the financial impact remained relatively limited due to low liquidity. Following the incident, South Korean exchanges such as Upbit and Bithumb immediately suspended DOT deposit and withdrawal services.

Attack Timeline and Exploitation Mechanism
Based on collected data, the attack originated from an exploit within the Hyperbridge system, an infrastructure that connects cross-chain assets, including the representation of Polkadot (DOT) tokens on Ethereum.

CertiK reported that the hacker was able to:

• Spoof messages within the bridge system
• Take over administrative control of the DOT token contract on Ethereum
• Mint up to 1 billion DOT tokens without authorization

After minting a massive number of tokens, the attacker sold part of them on the market. However, due to the relatively low liquidity of the Ethereum-based DOT, the amount successfully cashed out was only around $237,000.

Root Cause Analysis: Weakness in Cross-Chain System
According to security analysts, the root issue lies in a design flaw within the Hyperbridge gateway. The system is intended to verify cross-chain messages, but in this case, the validation mechanism was allegedly not robust enough to prevent data spoofing.

“This attack demonstrates that bridge components remain a weak point in the blockchain ecosystem, especially when message validation is not strictly enforced,” CertiK stated in its report.

Bridge-related exploits are not new. In recent years, several major attacks have targeted cross-chain protocols, often involving message manipulation or transaction validation flaws.

Market Impact and Exchange Response
Despite billions of tokens being minted, the overall market impact was relatively limited. This is largely due to the low liquidity of DOT on Ethereum compared to its primary network on Polkadot.

Nevertheless, swift action was taken by platforms such as Upbit and Bithumb, which immediately suspended DOT deposits and withdrawals as a risk mitigation measure.

Interestingly, the price of DOT itself did not experience significant short-term pressure, although market sentiment regarding bridge security has once again come under scrutiny.

Conclusion
This incident reinforces the notion that cross-chain infrastructure remains a vulnerable point in the crypto industry. While the financial losses were relatively small compared to similar past cases, the ability to mint tokens in such large quantities still poses a serious threat.

Moving forward, improvements in validation systems and security audits for bridge protocols will be crucial to preventing similar incidents. For investors, this event also serves as a reminder to consider the technical risks behind increasingly complex blockchain interoperability.