Huobi’s ‘Heco’ chain bridge drained of $87M in crypto assets

The HTX exchange has been hit by a security breach, similar to the recent Poloniex hack

by Macauley Peterson /
article-image

ADragan/Shutterstock modified by Blockworks

share

The bridge connecting the HTX exchange (formerly Huobi) and Ethereum was exploited for approximately $87 million in crypto assets early Wednesday.

Large quantities of ether, tether (USDT) and a wrapped version of bitcoin (HBTC) were seen leaving the bridge for a previously unused Ethereum wallet.

The suspicious transactions were first analyzed by various blockchain security firms including CertiK, Peckshield and Cyvers.

According to CertiK, the bridge’s private key was likely compromised.

Newsletter

Subscribe to Blockworks Daily

“The suspicious transactions were initiated by the Huobi HECO Bridge operator wallet indicating that this wallet was compromised,” a CertiK spokesperson told Blockworks.

Read more: Crypto exchange HTX loses $8M in weekend hack

Various other ERC-20 tokens were drained, swapped for ether, and distributed to at least 8 other wallets.

Two hot wallets of HTX Global (formerly Huobi) lost funds, according to Cyvers. Board member Justin Sun confirmed the incident on X.

“HTX and Heco Cross-Chain Bridge Undergo Hacker Attack. HTX Will Fully Compensate for HTX’s hot wallet Losses,” Sun said.

Justin Sun assumed control over the Huobi Eco Chain in October 2022, Bloomberg previously reported, although Sun denied he owns a majority stake. He referred to it as a merger with the Tron and BitTorrent Chain ecosystems, which he also controls.

The primary purpose of the HECO bridge is to enable the movement of digital assets between the Huobi Eco Chain and other blockchain networks, such as Ethereum.

The HECO hack is not an isolated incident but rather part of a pattern of security lapses in blockchain projects associated with Sun. Poloniex, an exchange acquired by Sun, suffered a $100 million exploit two weeks ago, which security analysts believe also may have resulted from compromised private keys.

Poloniex officials have been in the process of negotiating with the hacker in that case.

It’s not yet clear if the two thefts are directly related.

Get the news in your inbox. Explore Blockworks newsletters:

  • Blockworks Daily: The newsletter that helps thousands of investors understand crypto and the markets, by Byron Gilliam.
  • Empire: Start your morning with the top news and analysis to inform your day in crypto.
  • Forward Guidance: Reporting and analysis on the growing intersection of crypto and macroeconomics, policy and finance.
  • 0xResearch: Alpha directly in your inbox. Market highlights, data, degen trade ideas, governance updates, token performance and more.
  • Lightspeed: Built for Solana investors, developers and community members. The latest from one of crypto’s hottest networks.
  • The Drop: For crypto collectors and traders, covering apps, games, memes and more.
  • Supply Shock: Tracking Bitcoin’s rise from internet plaything worth less than a penny to global phenomenon disrupting money as we know it.
Tags

Upcoming Events

Permissionless IV

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

buy ticketslearn more

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy ticketslearn more

recent research

Research Report Templates.jpg

Research

Evaluating Bluefin’s Precarious Market Position

Bluefin possibly stands at an inflection point. The token is near an all-time low yet the protocol’s spot volume market share and derivatives exchange usage have been increasing month over month since its November launch. Given its current market position and the upcoming upgrades (for both Bluefin and SUI), there may be upside potential before the increased supply growth in December. However, strong opposition from existing competitors (like Cetus and Suilend), as well as new entrants (like Aftermath), pose key challenges to Bluefin’s medium-term success.

by Marc-Thomas Arjoon, CFA

/

news

article-image

Policy

Trump’s SEC pick grilled on past agency actions, conflicts of interest 

Top Committee Democrat Sen. Elizabeth Warren in her opening statement accused Atkins of “helping billionaire CEOs like Sam Bankman-Fried”

by Casey Wagner /
article-image

0xResearch NewsletterDeFi

COTI launches V2 mainnet: A new era of privacy-focused L2 solutions

Introducing garbled circuits for enhanced privacy and regulatory compliance

by Donovan Choy /
article-image

AnalysisSupply Shock

How Silk Road carved the fault line that separates ‘bitcoin’ and ‘crypto’

Ross Ulbricht was a freedom maximalist building freedom tech, powered by Bitcoin

by David Canellis&Pete Rizzo /
article-image

DeFiLightspeed Newsletter

Solana startups spin up validators for revenue and ‘soft power’

Solana validators can reap benefits including payments, votes and community clout

by Jack Kubinec /
article-image

Sponsored

WCT’s Role in the Onchain Economy

WalletConnect is cementing itself as the essential connectivity layer, ensuring wallets remain the entry point for billions of users

article-image

Business

Galaxy to pay $200M to New York over alleged LUNA manipulation

According to a legal filing, Galaxy Digital helped boost the price of LUNA while quietly selling its tokens

by Katherine Ross /