Harmony Protocol Heist: Horizon Bridge Loses $100M
Harmony Protocol, one of the relatively large DeFi centers, saw an exploit of its Horizon bridge, taking away $100M in assets. This is one of the more significant exploits of smart contracts, with a relatively high value. The absolute peak in bridge attacks took more than $621M in value from the Ronin-Ethereum bridge in March 2022.
The affected bridge moved ETH and other tokens between their Ethereum version and the Harmony protocol wrapped version. Harmony operates an entirely separate L1 ecosystem built for scaling, with between 20K to 40K active wallets per day. On 24.06, the network worked through 1.5M transactions in 24 hours, though the bridge exploit itself only took 11 transactions.
So far, the investigation has discovered the hacker managed to get hold of private keys.
Bridges are smart contracts that are supplied with funds held on a known address. But calls can be made to the contract to release the funds. Exploiters use weaknesses in calls to drain the collateral. A bridge connects two networks, and an exploit leaves the tokens on the second network without real collateral.
This time, the bridge exploit affected multiple assets and took away 13,100 ETH. The tokens were moved immediately and some were traded through decentralized exchanges. Harmony has contacted other market operators to track and freeze funds from known exploit addresses.
The hacker also showed no signs of intending to return the funds, as in the case of earlier exploits against ThorChain. In some cases, the exploiter can choose to return most of the funds while retaining a part as a form of bug bounty.
Smart contracts can be audited and certified by organizations like Certik, but there is still no general standard for bridge protection. Vitalik Buterin, co-founder of Ethereum, has warned that bridge smart contracts remain the most vulnerable parts of a decentralized ecosystem.
Multi-chain apps still require bridging to make the best of decentralized trading. Not all types of tokens are compatible with DEX services or other tools for passive income. Bridges remain attractive for being supplied with base tokens of high liquidity, including ETH, but also Bitcoin (BTC), Binance Coin (BNB) and stablecoins like USDC.
Recently, Coinbase added direct access to Solana and Avalanche, expanding the number of tokens with no need of bridging or using an Ethereum version exclusively. This will mostly affect the users of stablecoins, which are often bridged to use as sources of liquidity.
How was Harmony Affected
Harmony Protocol currently holds only 45M in notional value, down from a peak of 1.2B during high DeFi activity periods. The exploit itself may not be immediately reflected, but it has taken funds deposited by retail traders.
DeFi Kingdoms remains the biggest protocol on Harmony, carrying 28% of all value. DeFi Kingdoms is a gamified financial operation, and the biggest play-to-earn game on Harmony. The protocol also hosts NFT games like MoonBots.
Harmony is among the smaller but still stable L1 solutions with their own growing ecosystem of projects. So far, Harmony has mostly avoided the fallout of Terra LFG, Celsius and the exposure to Three Arrows Capital (3AC) crypto hedging fund.
Will ONE Token Suffer More Losses
ONE, the native token of Harmony, is down to $0.02. The asset peaked at the start of 2022 at $0.33, and was one of the most active assets linked to DeFi.
With the slide of Solana and the loss of LUNA, ONE also erased more than 90% of its value.
Still, ONE is a low per-unit asset and may offer a more significant upside, despite the loss of funds. A rally in ONE may raise more value within the protocol.
ONE is a relatively older asset with multiple trading pairs on the Binance exchange. Renewed interest in altcoins and in DeFi protocols may boost demand for Harmony. The project is one of the more prominent ICO sales organized by Binance Launchpad. The project raised $23M in value in May 2019, though it failed to gain the influence of Solana, Avalanche or some more prominent networks.ย
Still, Harmony may be a growth project with more years ahead to go though the bear market and regain value. Earlier price predictions saw ONE breaking the $1 barrier, though now a return above $0.10 would be a welcome return to a higher range.
Harmony and ONE operate with a worldwide team with representation on the US market. The current bridge exploit is being investigated, notifying the US FBI. There is still no certainty on how the theft has affected token owners, and some of the assets may continue to exist and even be traded on both sides of the bridge. After the exploit, the bridge has been closed and may take months to be replenished with funds and undergo security audits.
Uphold makes buying crypto with popular currencies like USD, EUR and GBP very simple with its convenient options to swap between crypto, fiat, equities, and precious metals.
With over 50 coins and an obsession with security, Kraken is one of the safest places to buy and trade crypto.
Kraken has a good reputation for security and protection of your funds and operates across the USA (except NY), Canada, the EU and Japan
Based in Charleston, South Carolina. Serves over 184 countries and has done over $4 billion in transactions. Offers convenient options to swap between crypto, fiat, equities, and precious metals.
What are the most common scam coins and how much have they got away with in the past, plus some tips on how to avoid these scam coins.
Celebrities on social media can have huge followings creating enormous power to influence their followers. We look at who are the most influential and some of the potential risks of following their advice
The leader in programmable money, smart contracts and decentralised applications. There have been many copycats but none have the community and level of adoption.
IOTA is a feeless crypto using a DAG rather than a blockchain. It aims to be the currency of the Internet of things and a machine economy.