Orbit Bridge (by Ozys): Compromised Multisig Signer Keys (via rogue former CISO)
Orbit Bridge's former CISO deliberately weakened the company firewall before leaving on December 6, enabling a $81.5M New Year's Eve drain of the Ethereum bridge vault — completed in 17 minutes across 5 transactions before the bridge was deactivated.
Summary #
Orbit Bridge (by Ozys) suffered a Cross-chain Bridge on 2023-12-31, resulting in a loss of approximately $82M.
What happened #
Orbit Bridge's former CISO deliberately weakened the company firewall before leaving on December 6, enabling a $81.5M New Year's Eve drain of the Ethereum bridge vault — completed in 17 minutes across 5 transactions before the bridge was deactivated.
Linked factors #
- RD-F-007 — related : Bug bounty absent — baseline integrity gap [via dashboard_risk_factors/Bug bounty: Unknown]
- RD-F-122 — related : Contributor paid to wallet routing to DPRK cluster [via cross-hack: Factor 65: DPRK Developer Risk]
- RD-F-125 — causal : ★ Deployer linked to DPRK cluster [via cross-hack: Factor 65: DPRK Developer Risk]