The cross-chain interoperability protocol Axelar has taken swift action to halt its connection to Secret Network following a security breach that drained approximately $4.67 million in bridged assets. This incident underscores the persistent security challenges facing the decentralized finance landscape, particularly within complex cross-chain infrastructures.
Emergency Response and Financial Loss
Following the detection of the incident on June 19, Axelar’s emergency committee immediately disabled both the Secret and Secret-SNIP connections to prevent further losses. The exploit specifically targeted assets moved via the Inter-Blockchain Communication (IBC) protocol, leading to the unauthorized removal of millions of dollars in tokens. To mitigate the damage, the Axelar team has already engaged with law enforcement and major cryptocurrency exchanges to track the stolen funds and investigate the breach.
Isolated Vulnerability in Smart Contracts
Initial investigations suggest that the vulnerability was not located within Axelar’s core validator network or its primary interoperability infrastructure. Instead, the issue appears isolated to a specific ICS-20 smart contract on the Secret Network side of the bridge. While the investigation remains ongoing, Axelar has reassured users that other IBC connections remain unaffected and the core protocol is secure. This event highlights the inherent risks of smart contract integrations, where a single point of failure in an external network can jeopardize bridged assets across ecosystems.
