Ethereum Layer-2 Taiko Warns Users to Withdraw Bridge Funds After Security Breach

Taiko, an Ethereum Layer-2 scaling solution, issued a warning on June 13, 2024, urging users to withdraw funds from its bridge due to a security breach. Researchers estimate that attackers stole over $1.7 million by exploiting Taiko's proof verification process. The exploit targeted the "prove" function within the bridge's smart contracts, allowing attackers to mint arbitrary amounts of ETH on Taiko's Layer-2 network and then bridge them back to the Ethereum mainnet. The vulnerability was identified and reported by blockchain security firm PeckShield. Taiko confirmed the incident in a post on X (formerly Twitter), stating that the team is investigating the exploit and has paused bridge operations. The company advised users to avoid depositing funds into the bridge and to withdraw existing assets as a precautionary measure. This incident highlights ongoing security challenges within the decentralized finance (DeFi) ecosystem, particularly concerning cross-chain bridges which have been frequent targets for attackers.