News linked to both this project and an event.
Syscoin has released a security incident report detailing the UTXO-to-NEVM bridge vulnerability. According to the report, this incident resulted in the unauthorized release of approximately 5 billion SYS tokens on the UTXO side. The affected funds have since been returned to the official recovery address and permanently destroyed using the standard OP_RETURN mechanism, rendering them unusable by the protocol. As a result, the on-chain SYS supply has reverted to its expected value. The bridge functionality remains suspended while the team completes its final review and remediation efforts.
Syscoin released a preliminary post-mortem of the cross-chain bridge incident, stating that due to a verification issue in the bridging process, the attacker exploited an abnormal transaction proof validation to generate approximately 5 billion SYS tokens abnormally on the UTXO side via the affected bridging path.