Verus Bridge Exploiter Returns $8.5M After Bounty Offer
The Verus bridge attacker returned 4,052 ETH (~$8.5M) to the project after a 1,350 ETH bounty was offered. The exploit initially drained the Verus-Ethereum bridge via forged cross-chain transfers. While the recovery shows negotiation success, DeFi hacks remain a major concern, with $634M stolen in April.
Quick Take
Attacker returned 4,052 ETH ($8.5M) to Verus team wallet.
Verus offered 1,350 ETH bounty for partial fund recovery.
Exploit involved forged cross-chain transfers on Verus-Ethereum bridge.
Incident highlights ongoing DeFi security risks despite May hack decline.
Market Impact Analysis
NeutralWhile the fund recovery is positive for Verus, it does not materially shift broader market sentiment or address systemic bridge exploits.
Speculation Analysis
Key Takeaways
- Attacker returns 4,052 ETH after Verus offers 1,350 ETH bounty within 24 hours.
- Project recovers 75% of stolen funds, limiting net loss to $2.8M kept by exploiter.
- Bridge exploit used forged cross-chain transfers, persisting DeFi security concerns.
- Legal action remains a possibility despite negotiated settlement.
What Happened
On May 22, 2026, the Verus bridge exploiter returned 4,052 ETH—worth about $8.5 million—to the project's team wallet. The move came after Verus offered a 1,350 ETH bounty for the return of the funds within 24 hours. The attacker kept the bounty, pocketing $2.8 million. The Verus-Ethereum bridge was initially drained earlier in the week via a forged cross-chain transfer exploit, joining a growing list of bridge attacks. The swift recovery demonstrates that some projects can negotiate with hackers, but the 25% kept by the exploiter underscores the lingering costs of DeFi vulnerabilities.
The Numbers
Verus recovered 4,052 ETH out of roughly 5,402 ETH stolen, a 75% recovery rate. The attacker retained 1,350 ETH as a white-hat bounty. The bounty deadline was just 24 hours, pressuring the exploiter to act quickly. While this loss was mitigated, DeFi hacks remain a massive concern: April saw $634 million stolen, though May volumes dropped to around $38 million, per DefiLlama.
Why It Happened
Verus directly incentivized the return by offering a substantial bounty—over 25% of the stolen amount—with a tight deadline. This follows a broader trend in crypto where projects opt to negotiate rather than solely rely on law enforcement. The speed of the response suggests the exploiter prioritized the guaranteed ETH reward over the risks of laundering or cashing out the full amount. Bridge exploits continue to plague the industry, with $17 billion stolen in the past decade, making such negotiated resolutions increasingly common.
Broader Impact
While the recovery limits Verus's immediate losses, it does not resolve systemic bridge security flaws. The incident may set a precedent for bounty negotiations, but regulatory and legal repercussions could still follow. With April's record $634 million in DeFi hacks, the sector remains under pressure to improve protocol security.
What to Watch Next
- Potential legal action: Authorities may still pursue the exploiter despite the bounty.
- Bridge security upgrades: Verus and other projects may accelerate multisig or ZK-proof implementations.
- Hacker negotiation trends: More exploits may end in negotiated settlements as protocols adapt.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
