2025-12-28 03:21:58

Public Chain Flow experienced a terrifying moment last night. In just a few hours, the token price plummeted by over 30%, with a market cap evaporating approximately $100 million, triggering market panic. The Flow Foundation subsequently confirmed that a major cybersecurity threat had indeed occurred.

According to the latest investigation results released by the Foundation, on December 27th, an attacker exploited a vulnerability in the Flow execution layer and successfully transferred about $3.9 million worth of assets off-chain just before validator coordination shutdown. Although the amount is not insignificant, there is a key detail worth noting — this attack did not affect users' actual account balances, and all user deposits remain intact and unharmed.

Currently, the Foundation's security team has traced the flow of funds. The $3.9 million outflow was mainly transferred through cross-chain bridges such as Celer, Debridge, Relay, and Stargate. The attacker’s wallet has been identified and marked. The Foundation is actively tracking subsequent money laundering activities via Thorchain and Chainflip, while also initiating fund freezes and system patches.

This incident serves as a reminder that even well-established public chains, which have endured market upheavals, cannot overlook security risks during the transition to DeFi. However, based on the Foundation’s quick response and transparent communication, there is at least some credibility in their emergency handling.

FLOW13,81%

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

8 Likes

Reward
8
5
Repost
Share

Comment

0/400

PumpAnalyst

· 13h ago

$3.9 million sounds huge, but this operation actually showed me the professionalism of the foundation. The speed of tracking money laundering is much faster than most projects. User funds haven't moved, which is very important, but still be cautious—next time a vulnerability might not be so lucky. From a technical perspective, this plunge might actually be a buying opportunity? I'm not just bullish, just observing the support levels, it feels like there's a whale building a bottom. Everyone, don't panic, the real risk has never been about dumping, but about chasing high at the moment. Flow's handling this time is indeed transparent, but compared to the security records of other public chains, I still feel a bit anxious...

View OriginalReply0

NotGonnaMakeIt

· 13h ago

3.9 million USD lost, but luckily no user assets were touched, or it would have been a social death. --- Flow's response this time was pretty quick, at least it didn't hide anything, much more reliable than some projects. --- Another vulnerability in the execution layer... When will we stop seeing these security incidents? --- Market cap evaporated by 100 million, and the token price plummeted by 30%. Is this my path to financial freedom? --- The foundation has tracked down the attacker’s wallet. Looking forward to recovering the funds. --- Cross-chain bridges are always black holes; this time I have to verify again. --- Honestly, not having any users scammed is already considered good luck, much better than some projects. --- Even established public chains can't prevent vulnerabilities; this industry is really competitive. --- Funds frozen on Thorchain? How was it frozen? I don't quite understand this operation.

View OriginalReply0

SlowLearnerWang

· 13h ago

It's the same story again: first a crash that scares everyone to death, then nothing happens. I just want to know when the 3.9 million can be recovered.

View OriginalReply0

CryptoWageSlave

· 13h ago

Rumors are flying everywhere, and I've become numb to it. $3.9 million sounds scary, but as long as user funds haven't moved, it's okay—at least better than those who directly rug.

View OriginalReply0

BTCWaveRider

· 14h ago

3.9 million USD stolen, how can it still drop 30%... It really scared people to death --- Flow's reaction speed is pretty good, at least they didn't pass the buck, much better than some public chains --- As long as user funds are not moved, that's the key. Otherwise, this round is just a total GG --- Cross-chain bridges have always been black holes... When can we truly achieve security? --- Even established public chains can't prevent vulnerabilities, this is a vivid lesson to stay vigilant at all times --- Tracking the money laundering link isn't the end; can they really freeze the funds? It's a bit uncertain --- The sharp drop in token price is shocking, but compared to some rug pulls, this is considered a relatively responsible handling --- Transparent reporting is a plus, but when will the system vulnerabilities be fully fixed?

View OriginalReply0