Crypto-AI project IoTeX’s cross-chain bridge infrastructure was exploited Saturday after a private key compromise gave an attacker unauthorized control over the project’s TokenSafe and MinterPool smart contracts, according to PeckShield and onchain analyst Specter. Independent estimates put total losses as high as $8.8 million, though IoTeX has pushed back on those figures.
Specter was among the first to flag the incident, posting on X at 4:20 a.m. EST that IoTeX’s private key appeared to have been compromised, with a token safe drained of approximately $4.3 million across multiple assets. The tokens taken included USDC, USDT, IOTX, PAYG, WBTC and BUSD, all withdrawn directly from the vault rather than through a smart contract vulnerability.
The attacker moved quickly to obfuscate the stolen funds, swapping the drained assets into ether via decentralized exchanges including Uniswap and then bridging roughly 45 ETH to the Bitcoin network. PeckShield confirmed the exploit and noted the attacker used THORChain to move funds cross-chain, a laundering pattern seen in previous incidents including a 2023 wallet hack tracked by blockchain sleuth ZachXBT.
According to Specter, the attacker also leveraged the compromised contracts to mint approximately 111 million CIOTX tokens, worth an estimated $4 million. CIOTX is IoTeX’s cross-chain token standard designed to facilitate multichain liquidity for the DePIN protocol. Specter later updated his estimate to include an additional 9.3 million CCS tokens drained, valued at roughly $4.5 million.
IoTeX acknowledged the incident in a post on X roughly three hours after Specter’s initial report, saying its team was “fully engaged, working around the clock to assess and contain the situation.” Co-founder and CEO Raullen Chai echoed the message, writing that centralized exchanges were cooperating to trace and freeze funds and that the situation was “under control.”
IoTeX’s blockchain is currently down, last processing blocks at about 10 a.m. EST. “The IoTeX chain will be back in an estimated 24–48 hours, along with exchange deposits, after the hackers’ addresses are frozen,” Chai wrote. “All funds are safe on the IoTeX chain!”
“Initial estimates suggest the potential loss is significantly lower than circulating rumors,” Chai wrote. “We will continue working closely with our security partners to investigate, recover funds where possible, and provide further updates transparently.”
In an email to The Block, Chai said recovery efforts are underway. “We are still collecting data but the amount will be around ~2M USD for now,” Chai wrote. “We have immediately notified all exchanges to freeze the hacker’s address, they won’t be able to even deposit the token.”
Chai also said the hacker’s token minting is of little consequence. “CCS and many other tokens are deprecated long time ago so have no value – CIOTX has been largely frozen and we are upgrading it so hacker won’t be able to move the assets.
IOTX was trading near $0.0049 Saturday morning, down about 9% over 24 hours with daily trading volume surging more than 500%, according to The Block’s IoTeX Price page.
In a follow-up post, Specter flagged what they described as a funding trail connecting the IoTeX attacker’s wallet to the $49 million hack of stablecoin neobank Infini in February 2025, one of the largest exploits of last year. The Infini team accused a former contract developer, known onchain as shaneson.eth (@k63jpx), of retaining administrative privileges and draining the platform’s vault.
“We have multiple pieces of evidence suggesting this is a planned attack that could have been developing for six to eighteen months already,” Chai told The Block, though it’s unclear whether he was referring to the Inifini hacker connection.
The incident adds to a rough stretch for cross-chain bridge security. The Block previously reported on the Flow blockchain exploit in December, where a similar private key compromise allowed an attacker to mint tokens and drain roughly $3.9 million before the network attempted a controversial rollback. Private key compromises accounted for 88% of stolen funds in Q1 2025, and the attack vector has continued to be a persistent threat into 2026. Crypto theft topped $3.4 billion in 2025, according to Chainalysis.
IoTeX, founded in 2017, brands itself as a blockchain platform for real-world AI and decentralized physical infrastructure networks, or DePINs. The project has partnerships with Google, Samsung and ARM and in late 2024 integrated with Polygon’s AggLayer.
Updated at 12:30 p.m. EST with Chai’s response.
© 2026 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
Trade Crypto On Coinhub Exchange
Trade Crypto On Coinhub Exchange
Stay ahead of the market by turning news insights into trading opportunities. With Coinhub Exchange, you can seamlessly buy, sell, and manage your digital assets, all in one secure platform. Take advantage of real-time market insights, deep liquidity, and fast execution for your favorite cryptocurrencies. Don’t just read about it — trade crypto now!
Disclaimer
The content of this article shown by Coinhub News, powered by The Block, is for informational purposes only and should not be construed as financial, legal, tax, or investment advice. Coinhub News and its affiliates are not a licensed financial advisor, legal advisor, broker, or tax advisor, and ... should not be considered as professional advice or a recommendation to engage in any specific investment, legal decision, or financial transaction. Cryptocurrency markets are highly speculative and volatile. Readers should perform their own independent research and consult with a qualified professional before making any financial or legal decisions. The opinions expressed in this article are those of the author and do not necessarily represent the views or opinions of the Company of its affiliates. Additionally, the Company does not make any representations or warranties regarding the accuracy, timeliness, reliability, or completeness of any information in this article. By accessing this content, you acknowledge that any reliance on the information contained in this article is solely at your own risk. The Company is not responsible for any financial losses, legal disputes, or other damages that may arise from reliance on this content or from any investment or legal decisions based on the information provided. Investing in cryptocurrencies involves substantial risks, including the risk of losing your entire investment, and you should carefully consider whether it is appropriate for your circumstances.
Read more
