CrossCurve Reports Bridge Contract Exploit, About $3 Million Drained

On 2 February 2026, CrossCurve confirmed an active security incident after a bridge-related contract flaw let forged cross-chain messages slip past validation, draining roughly $3 million across multiple networks. Investigations are ongoing, and partners have urged users to reassess exposure and temporarily stop interacting with the protocol.