Gravity Bridge, a cross-chain protocol, lost $5.4 million in a hack this week. The exploit sent the platform's total value locked (TVL) plummeting 47%, adding to a year that's already seen nearly $760 million stolen across the crypto ecosystem.
What happened to the bridge
Attackers drained the bridge's smart contract early this week, making off with about $5.4 million in various tokens. Security firms flagged the unusual outflow within hours, but the damage was done. Gravity Bridge's TVL collapsed from its pre-hack level — a 47% crash that erased nearly half the capital users had deposited. The exact method of the exploit hasn't been disclosed, but cross-chain bridges often fall victim to code bugs or compromised validator sets.
The TVL hit feels immediate
A 47% TVL drop isn't just a number on a dashboard. It means users yanked their funds as fast as they could. For a protocol built on trust that its smart contracts won't leak, a $5.4 million hole is hard to recover from. The bridge hasn't announced a full restart or a compensation plan yet. Some users are stuck — if you had assets in a liquidity pool that got drained, there's nothing to withdraw.
2026's hack tally keeps climbing
The Gravity Bridge theft pushes this year's total crypto hack losses to nearly $760 million. That's a staggering sum for just five months. The industry has seen a steady drumbeat of exploits targeting bridges, DeFi protocols, and centralised exchanges. Gravity Bridge is the latest in a line of cross-chain bridges that have proven difficult to secure. The question hanging over the sector: how many more bridges will get picked clean before the code gets bulletproof?
The attacker's identity remains unknown. No recovery proposals have surfaced. For now, Gravity Bridge users are left watching a 47% crater where their TVL used to be.
