Aethir (decentralized GPU compute / DePIN; ATH token bridge): Access control — unprotected/misauthorized `transferOwnership()` on AethirOFTAdapter; either missing `onlyOwner` modifier or compromised single-EOA admin key
An attacker seized ownership of Aethir's LayerZero OFT bridge adapter on BNB Chain in one `transferOwnership` call, drained ~423,000 ATH (~$400K), and bridged to TRON — but exchange coordination froze most of it, holding net user losses under $90K.
Summary #
Aethir (decentralized GPU compute / DePIN; ATH token bridge) suffered a DePIN / Cross-Chain Bridge Adapter (LayerZero OFT) on 2026-04-09, resulting in a loss of approximately $400K.
What happened #
An attacker seized ownership of Aethir's LayerZero OFT bridge adapter on BNB Chain in one `transferOwnership` call, drained ~423,000 ATH (~$400K), and bridged to TRON — but exchange coordination froze most of it, holding net user losses under $90K.
Linked factors #
- RD-F-007 — related : Bug bounty absent — baseline integrity gap [via dashboard_risk_factors/Bug bounty: [PENDING: no confirmed Immunefi program for the bridge adapter]]
- RD-F-027 — causal : ★ Single admin EOA — when value mentions key compromise [via realtime_signals/Governance/admin action: Y — unauthorized `transferOwnership` call on AethirOFTAdapter is itself the critical admin action]
- RD-F-101 — illustrative : Large governance proposal queued — RT signal would have fired [via realtime_signals/Governance/admin action: Y — unauthorized `transferOwnership` call on AethirOFTAdapter is itself the critical admin action]