Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Pre-IPOs
Unlock full access to global stock IPOs
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
More
One billion DOT tokens were issued out of thin air, and the hacker only made $230,000? This might be the most tragic “get-rich-quick dream” in the crypto world
Brothers.
Just today, something extremely surreal, extremely ironic, and extremely chilling happened.
One billion DOT tokens appeared out of nowhere, and then were instantly dumped.
It was done by the hacker.
You might think: “Damn, one billion DOT tokens? Then this hacker would just take off on the spot—buying a whole small country, right?”
Wrong.
He only ended up with $237,000.
---
Here’s what happened:
This afternoon, someone on-chain suddenly “pulled a magic trick.”
On the Ethereum chain, a cross-chain bridge contract called Hyperbridge was compromised. The attacker forged a message and directly seized the “admin rights” of the DOT token contract.
Then, with a big flourish, he minted 1 billion DOT tokens.
Yes, you heard that right: 1 billion.
Do you know how many DOT tokens there are natively in Polkadot? This guy printed out a “second Polkadot.”
Next, he started the “dump show”—
With the coin price at $1.22, it was instantly smashed down to near zero.
---
You think he would make a fortune?
There wasn’t enough on-chain liquidity.
That’s it—so simple, and so brutal.
The 1 billion DOT tokens he threw out had nobody to pick up. That pitiful little liquidity pool was like a sheet of paper—it was torn to pieces in an instant. The price went to zero.
He spent so much effort: forging messages, tampering with permissions, minting tokens, selling them off… and in the end, he only cashed out $237,000.
---
Why do I say this is scarier than you think?
1. Cross-chain bridges are always the “softest targets”
This time, it wasn’t an attack on Polkadot’s native chain; it was on the DOT bridge version on Ethereum.
What are bridged assets?
It’s when you “wrap” an asset from one chain and use it on another chain.
The problem is: once there’s a vulnerability in this “wrapping paper,” everything inside is fake.
The attacker doesn’t even need to attack Polkadot’s mainnet. He only needs to fool that “bridge.”
And how many times has something like this happened with cross-chain bridges in history?
Ronin Bridge: $600 million.
Wormhole Bridge: $320 million.
Today’s incident may not have made the hacker much money, but the nature of the vulnerability is the same—message verification was forged.
The industry has been shouting “cross-chain security” for three years. And yet today, someone still used the old, outdated trick of “forged messages,” successfully minting 1 billion tokens.
What does this show?
It shows that many projects’ security is still stuck in the stage of “write a contract, get a few audits, then burn incense.”
2. On-chain liquidity is more fragile than you think
This hacker gave all the “paper wealth” people on-chain a real-world lesson:
The coins you hold only count as money if you can sell them.
1 billion DOT tokens have a book value of $1.2 billion.
But because liquidity wasn’t enough, he only sold $230,000.
Think about it—how many altcoins, MEME coins, and even some “mainstream coins” that usually look like they have market caps in the tens of billions—when you really want to dump, how likely is it that you can even get out a fraction, let alone the rest?
This hacker’s “tragedy” is actually a wake-up call for all retail investors.
The “100x coins” and “1000x coins” you hold—when the day finally comes that you want to run, you might not even be able to get that little amount of money out.
---
Polkadot’s official team hasn’t said anything yet. Hyperbridge also hasn’t said anything.
But honestly, what they say at this point doesn’t matter anymore.
What matters is:
- The trust model of cross-chain bridges is fundamentally a bet that nobody will discover the vulnerability. And in the blockchain world, what it lacks the least is people who find vulnerabilities.
- Liquidity is king—it’s not a slogan; it’s a lifeline. A pool without depth can’t even be cut by a hacker.
- Don’t be obsessed with big terms like “lockups,” “cross-chain,” and “ecosystem.” Today they can mint 1 billion DOT tokens; tomorrow they can mint your holdings too.
---
Finally, a painful truth:
This hacker is very likely a tech geek, or a team.
They spent time, effort, and technical skills, risking prison, and in the end made $237,000.
Meanwhile, many KOLs can just shout for a trade, collect advertising fees, cook up some mouse-trading accounts—maybe they make even more than this.
Is technology worthless?
No—it’s just that there are too many vulnerabilities, and liquidity is too scarce.
Today, 1 billion DOT tokens were only sold for $237,000.
Tomorrow, the coins you hold might not even be sellable.
---
Which bridge do you think will be punctured next? #Gate广场四月发帖挑战 $DOT