Skip to main content
Sign in

Taiko L2 Bridge Exploit June 2026

avoid.net/taiko-l2-bridge-exploit-june-202622/100·82% conf.
[AI-DRAFTED · AWAITING VERIFICATION]
anchored·5PLuAK…HCDz

Summary

On June 21–22, 2026, Taiko — an Ethereum-equivalent Layer-2 rollup — suffered a bridge exploit in which an attacker drained approximately $1.7 million (roughly 870 ETH and 1.99 million TAIKO tokens) by forging cross-chain withdrawal proofs using an SGX enclave signing key that had been publicly committed to the taikoxyz/raiko GitHub repository. The team halted block production, froze bridge and ERC20Vault contracts, and pledged full 1:1 recollateralization before reopening. The incident is part of a broader 2026 pattern of bridge exploits totaling over $340 million across 14+ incidents.

Connected Entities

1 entities · 10 linked investigations
Organizations
Taiko L2 Bridge Exploit June 2026
Relationships
    Also appears in
    edgeX Exchange·28Mach-O Man Malware Campaign (Lazarus / Chollima)·0Alephium Bridge·18Bunni Protocol·28BitGrail·2Shunda Park Scam Compound·0Trenton Johnston·0Chen Zhi / Prince Group·2Thorchain DEX·28Crossmint·70
    Have evidence about Taiko L2 Bridge Exploit June 2026?

    Timeline(9 events)

    2026-06-21

    Attacker begins exploiting Taiko's bridge using leaked SGX enclave signing key (enclave-key.pem) from the public taikoxyz/raiko GitHub repository to forge withdrawal proofs.

    SpotedCrypto, Thirdweb

    2026-06-22

    Blockaid detects the exploit in real time. Approximately 870 ETH and 1.99 million TAIKO tokens are drained from the L1 Bridge and ERC20Vault contracts on Ethereum mainnet.

    CoinDesk

    2026-06-22

    Attacker moves approximately 1.99 million TAIKO tokens to an address on MEXC exchange.

    CryptoTimes

    2026-06-22

    Taiko activates Security Council multisig; Bridge and ERC20Vault contracts frozen. Block production halted by proposers. Exploit contained by approximately 2:08 a.m. ET.

    Taiko official X account (taikoxyz)

    2026-06-22

    Taiko issues public advisory urging all users to withdraw funds from every bridge on the network; requests centralized exchanges suspend TAIKO deposits.

    Decrypt

    2026-06-22

    Upbit and Bithumb suspend TAIKO deposits and withdrawals. TAIKO token falls 10–20%, touching an all-time low near $0.07.

    MEXC News, CoinCodex

    2026-06-22

    Recovery pull request #21820 ('port hack recovery hooks to v3') opened on the taikoxyz GitHub, bundling checkpoint versioning, Inbox state reset, bridge message invalidation, and QuotaManager restoration.

    SpotedCrypto

    2026-06-25

    Taiko confirms that no user will lose funds and announces full 1:1 bridge recollateralization before reopening. Taiko's CEO files a formal report with Singapore authorities.

    CryptoTimes

    2026-06-28

    Taiko publishes a four-step restart plan: deploy and audit fixes, recollateralize bridge 1:1, restore L2 activity, then reopen bridge under Security Council approval.

    crypto.news
    Provenance & Audit Trail
    Anchored on SolanaVerify on-chain

    Decision Log

    This investigation is cryptographically anchored to the Solana blockchain and source URLs are archived via the Internet Archive.

    full audit log →version history →

    model: claude-code-investigator

    generated: 6/29/2026, 12:14:27 PM

    last updated: 6/29/2026, 12:14:36 PM

    avoid.net — verified advice for a post-truth world