TAC TON Bridge Exploit: $2.85M Recovered, Users Fully Compensated
TAC says it recovered most funds stolen in a $2.85 million TON bridge exploit on May 11. In a post-mortem report, TAC states the attacker bypassed the bridge’s code hash verification by deploying a counterfeit contract that mimicked a legitimate jetton wallet. This allowed the bridge to treat fake USDT deposits as valid, issuing uncollateralized assets on TAC’s side while draining locked assets on TON.
TAC added that the stolen funds were quickly moved across multiple chains using LayerZero interoperability, complicating recovery. Security firm Hypernative reportedly detected the breach early, but initial recovery attempts failed.
On compensation, TAC says it recovered the majority of the losses through negotiations with involved parties. To ensure no user bears damage, it will use its foundation treasury to cover any remaining shortfall, guaranteeing full user reimbursement.
TAC also paused the bridge’s sequencer after the TON bridge exploit. The team plans to gradually reactivate it only after external audits and peer reviews.
For traders, this TON bridge exploit has a clear implication: cross-chain bridge verification methods (like code hash checks) can be bypassed by look-alike contracts. While the immediate outcome is positive for users, the incident reinforces ongoing DeFi security risk and the need to watch bridge activity and settlement health closely.
Neutral
This is mixed news for markets. On one hand, the TON bridge exploit ended with TAC recovering most funds and committing to full user compensation via its foundation treasury. That reduces immediate counterparty risk and can limit negative spillover into DeFi users’ sentiment.
On the other hand, the technical details show a structural vulnerability in cross-chain bridge verification—code hash checks were not enough against look-alike contracts. Similar bridge failures in past cycles (where assets were issued without proper collateral, then laundered through interoperability) often trigger short-term risk-off behavior for bridge tokens, higher scrutiny from auditors, and temporarily lower capital allocation to cross-chain projects.
In the short term, traders may watch for any residual “bridge downtime” effects and renewed protocol announcements around audits. In the long term, if TAC’s external reviews and sequencer reactivation restore confidence, the market impact could fade. Overall, because the outcome is user-protective but the exploit highlights ongoing systemic bridge risk, the expected market impact is neutral rather than bullish or bearish.