Share this article
Socket, Bungee Restart Operations After Apparent $3.3M Exploit
The platform experienced a security incident late Tuesday that affected wallets with infinite approvals to Socket contracts, developers said.
Updated Mar 8, 2024, 8:04 p.m. Published Jan 17, 2024, 7:20 a.m.
Make us preferred on Google
Interoperability service Socket and its bridging platform Bungee restarted operations early Wednesday after an apparent $3.3 million exploit led to a temporary pause in trading activity.
The incident occurred as attackers targeted wallets with infinite approvals to Socket contracts, developers said. Approvals are authorizations for blockchain-based tools that allow applications to access tokens, or a specific token, in a user’s wallet.
STORY CONTINUES BELOW
Anonymous security research @speekaway was the first to flag the exploits at around 18:20 UTC on Tuesday. A wallet connected to the exploit believed to be the attackers' holds nearly $3 million in ether [ETH] and $300,000 worth of other tokens.
Socket paused activity as the exploit came to light, preventing the attack from propagating further. Early Wednesday, Socket developers said on X the issue was fixed and activities were restarted. They added that plans for compensation were in the works.
Cross-chain bridges such as Socket’s Bungee allow users to transfer tokens between different blockchains but remain one of the most exploited tools in the market.
Earlier in January, the new year’s first crypto exploit became an $81 million hack of Orbit Chain, a cross-chain bridge that connects Ethereum to other networks. Such attacks continue to remain commonplace due to the complexity of cross-chain tools, key developers say.
“Cross-chain security has multiple levels, which consumers should be aware of when choosing a bridge,” said Sergey Nazarov, co-founder of Chainlink, in a message to CoinDesk. “Like data oracles, there are many bridge variants that don’t provide real security and don’t describe how they work beyond saying the words ‘decentralized’ and ‘secure’.”
“It would be wise for bridge users to ask themselves what they really know about the security of their chosen bridge and where it ranks on the 5 levels of the cross-chain security spectrum,” Nazarov added.
More For You
Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.
What to know:
Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.
The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.
More For You
MegaETH mainnet to go live Feb. 9 in major test of ‘real-time’ Ethereum scaling
This follows its October 2025 $450 million token sale that was heavily oversubscribed.
What to know:
- MegaETH, the much-watched high-performance Ethereum layer-2 network, announced that its public mainnet will go live Feb. 9, marking a major milestone for a project that has gained a lot of attention in the scaling landscape.
- MegaETH positions itself as a “real-time” blockchain for Ethereum, designed to deliver ultra-low latency and massive transaction throughput.
Top Stories
