Decentralized cloud infrastructure project Aethir has confirmed a security breach involving its AethirOFTAdapter, resulting in losses exceeding $400,000.
The exploit targeted ATH bridge contracts that connect Ethereum to multiple chains, raising fresh concerns around cross-chain vulnerabilities.
According to initial on-chain analysis, the attacker bridged stolen funds from BNB Chain to TRON using Symbiosis Finance. The assets are currently held in two TRON wallet addresses, which are being actively monitored by security teams and partner exchanges.
In an official security notice, Aethir stated that the exploit has been successfully contained, with all compromised contracts immediately disconnected.
The team emphasized that the main ATH token supply on Ethereum remains secure and unaffected, and that critical infrastructure such as the ETH-ARB bridge on Squid continues to operate normally.
Despite the total exploit exceeding $400,000, Aethir clarified that user losses are limited to under $90,000, significantly reducing the broader impact on its ecosystem.
The company has pledged to release a full compensation plan next week, ensuring affected users are reimbursed.
Aethir also confirmed collaboration with major centralized exchanges, including Binance, Upbit, Bithumb, and HTX, to blacklist and freeze the attacker’s wallets.
Blockchain security firm ZeroShadow played a key role in analyzing the exploit and tracing fund movements.
The team has urged users to avoid interacting with several compromised contract addresses across multiple chains, including Ethereum, Solana, and zkSync.
A detailed post-mortem and expanded attacker wallet list are expected to be published via Aethir’s Discord channel.
The incident highlights persistent risks in cross-chain bridge infrastructure, even as projects continue to enhance security frameworks.
