Verus bridge hack: 4,052 ETH recovered after $11.5M loss via deal

The Verus bridge hack on May 18 led to about $11.5M in assets stolen from the Verus–Ethereum bridge. Verus says it has recovered 4,052 ETH after the attacker accepted a negotiated bounty deal and returned most funds within 24 hours. Under the agreement, the attacker kept 1,350 ETH and sent the rest back to Verus. PeckShield’s blockchain checks indicate roughly three-quarters of the stolen value was reclaimed. The breach stemmed from weak transaction “source amount” verification in the bridge, not a private-key leak. At the time of the Verus bridge hack, attackers drained 1,625 ETH, 103.6 tBTC and about 147,000 USDC, later converting them to an equivalent total of ~5,402 ETH. Traders should treat this as near-term risk-signal relief because the Verus bridge hack did not leave funds fully missing. However, the underlying theme remains: bridge verification failures keep recurrence risk elevated. This comes amid broader DeFi hack pressure, with April losses around $634M and May lower so far (~$38M), while bridges remain a prime target. Keyword focus: Verus bridge hack and ETH bridge flows are key watch items for positioning around headline risk.
Neutral
The quick recovery in the Verus bridge hack reduces immediate “funds missing” panic for ETH-linked bridge exposure, which can be mildly supportive for sentiment. However, the cause was a core bridge verification weakness, implying the systemic risk premium for DeFi bridges and cross-chain tokens is unlikely to fall quickly. Short term: relief may dampen volatility and stop-loss cascades among ETH bridge watchers. Still, traders may keep hedges on because only a portion was ultimately recovered and attacker behavior remains pattern-driven. Long term: repeated bridge-validation failures tend to keep governance, auditing, and monitoring as persistent market themes, potentially capping upside for bridge-dependent assets while increasing demand for risk-managed positioning.