• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
CoinLaw LogoCoinLaw

Bringing Crypto and Finance Closer to You

  • Latest News
  • Statistics
  • About
  • Contact
Subscribe
CoinLaw Logo
  • Latest News
  • Statistics
  • About
  • Contact
Subscribe
Home » Cryptocurrency

Aztec Hit by Second $2.1M Hack in Days as Bridge Drained

Published on: June 18, 2026
Kelvin Scott
Written By
Kelvin Scott
Kelvin Scott
Finance News Analyst • 520 Articles
Kelvin Scott, with over 8 years of experience, covers the latest trends in digital assets, financial markets, and regulatory developments. W... See full bio
LATEST POSTS:
21Shares Drops CF Benchmarks for FTSE Across Six Crypto ETFs
Coinbase Wins UK MiFID License for Stocks and Derivatives
South Korea Court Proposes Crypto Seizure Rules
Barry Elad
Reviewed By
Barry Elad
Barry Elad
Founder & Senior Journalist • 580 Articles
Barry Elad is a finance and tech journalist who loves breaking down complex ideas into simple, practical insights. Whether he's exploring fi... See full bio
LATEST POSTS:
Crypto Market Capitalization Statistics 2026: Totals, Dominance, and Trends
Remittances by Country Statistics 2026: Inflows and Cost
How Many People Use Cryptocurrency Worldwide 2026: Global User Count by Year and Region
Aztec Hit By Second 2 1m Exploit
As Featured In
Bloomberg LogoForbes LogoFortune LogoCoinDesk LogoCoinMarketCap Logo
Share on LinkedIn ChatGPT Perplexity Share on X Share on Facebook

Aztec has suffered a second multimillion dollar exploit in less than a week after attackers drained roughly $2.1 million from its deprecated Private Rollup Bridge.

Key Takeaways

  • Aztec’s Private Rollup Bridge was exploited for approximately $2.15 million to $2.16 million.
  • The attack occurred just days after a separate $2.1 million exploit targeting Aztec Connect.
  • Researchers say the attacker abused vulnerabilities in the bridge’s emergency escape hatch withdrawal mechanism.
  • Aztec Labs stated the affected infrastructure was deprecated years ago and is not connected to the current Aztec Network or AZTEC token.

What Happened?

Aztec has been hit by another security incident after an attacker exploited its deprecated Private Rollup Bridge, draining approximately $2.15 million worth of crypto assets. The incident comes less than a week after a separate exploit targeted Aztec Connect, raising fresh concerns about the risks posed by legacy smart contracts that remain active on chain.

Security researchers from SlowMist and other blockchain security firms traced the exploit to the bridge’s emergency withdrawal mechanism, which allegedly allowed an attacker to manipulate proof data and withdraw funds that should not have been released.

🚨SlowMist TI Alert🚨@aztecnetwork has been exploited again.

💸 Loss: 1,158 ETH+150,000 DAI+0.4696 renBTC (~$2,209,704.23 USD)

🔍 Root Cause: The `RollupProcessor.escapeHatch()` function (`0x737901bea3eeb88459df9ef1be8ff3ae1b42a2ba`) lacks access control: no `onlyOwner`, no…

— SlowMist (@SlowMist_Team) June 18, 2026

Second Exploit Hits Aztec Within Days

The latest attack targeted Aztec’s Private Rollup Bridge, a privacy-focused infrastructure product launched in 2021 and deprecated in 2022. Although the product was shut down years ago, its smart contracts remained operational because they were designed as immutable contracts that cannot be altered or upgraded.

According to security researchers, the attacker successfully drained approximately:

  • 1,158 ETH
  • 150,000 DAI
  • Around 0.47 to 0.5 renBTC

The total value of the stolen assets was estimated at roughly $2.15 million to $2.16 million at the time of the exploit.

Researchers also noted that the wallet used in the exploit was initially funded with a small amount of ETH originating from crypto exchange HitBTC before the attack was executed.

How the Attack Worked?

Preliminary investigations from SlowMist, including analysis shared by co-founder Cos and founder Yu Xian, suggest the attacker exploited weaknesses within the bridge’s escapeHatch function.

The escape hatch was originally designed as an emergency tool that allowed users to withdraw assets directly from Ethereum if needed. However, researchers found that the function lacked critical verification checks.

According to the findings, the attacker was able to submit a false rollup proof and manipulate withdrawal related parameters. The contract reportedly trusted specific transaction inputs without independently verifying ownership of the funds being withdrawn.

During brief periods when the escape mechanism was active, the attacker allegedly tricked the contract into releasing assets held by the bridge’s infrastructure.

Security firm BlockSec later said that both the recent Private Rollup Bridge exploit and the earlier Aztec Connect exploit were linked to what it described as public input binding issues, although the attack methods were not identical.

Newsletter Img
Don't chase the news. Let us curate it.

You get one weekly briefing with only the stories that matter. If the market is quiet, we skip it.

✅ Join readers from Visa, Vanguard, and the FDIC.

Aztec Says Current Network Remains Unaffected

Following the exploit, Aztec Labs emphasized that the compromised infrastructure has no connection to the current Aztec Network or the AZTEC token.

The company explained that the affected bridge was deprecated years ago and operates as an immutable system. Because of its design, the team does not possess administrative keys and cannot pause transactions, upgrade the contracts, or directly intervene once vulnerabilities are discovered.

We are investigating a potential exploit affecting a deprecated Aztec payments product from 2021. ~$2m was transferred from the immutable smart contract in transaction:https://t.co/FS4JoNnfiJ

The deprecated product is an immutable stage 2 rollup that was sunset in 2022.…

— Aztec Labs (@AztecLabs_) June 18, 2026

Aztec Labs also stressed that the incident is entirely separate from the current generation of network infrastructure under development.

The latest exploit follows another attack discovered on June 14 involving Aztec Connect, a privacy focused rollup product that had already been deprecated in March 2023. That incident resulted in losses exceeding $2.1 million.

Legacy Smart Contracts Under Fresh Scrutiny

The back to back exploits have renewed debate around the security risks posed by deprecated smart contracts that continues to hold user assets.

Risk analysis platform Blockful warned that old smart contracts can effectively become ongoing targets for hackers when active maintenance and oversight end.

Security experts argue that even when protocols discontinue products, immutable contracts containing legacy funds may continue to present attractive attack opportunities. SlowMist recommended that projects carrying assets in deprecated contracts consider structured asset migration plans to reduce long term exposure.

The incident also adds to a growing list of bridge related security breaches across the crypto industry. Reports indicate that bridge exploits have already caused more than $340 million in losses this year alone, highlighting the continued challenges facing decentralized finance security.

CoinLaw’s Takeaway

In my experience, these incidents show that a protocol’s greatest security risk is not always its newest technology but sometimes its oldest infrastructure. Even when products are officially discontinued, dormant contracts holding valuable assets can remain attractive targets for attackers. I found the Aztec case particularly notable because both exploits occurred within days of each other and involved infrastructure that had already been retired. The broader lesson for the crypto industry is clear: deprecating a product does not automatically eliminate its security risks if funds remain locked inside immutable contracts.

Definition of Smart Contract. Link to full glossary entry follows the description.Smart Contract

A smart contract is a self-executing program stored on a blockchain that automatically enforces agreement terms when predefined conditions are met, without intermediaries.

Read more

Definition of Cross-Chain. Link to full glossary entry follows the description.Cross-Chain

Cross-chain is the ability to move data or assets between separate blockchains via bridges, messaging protocols, or interoperability networks.

Read more

This article has been reviewed and fact-checked by Barry Elad. CoinLaw follows strict Publishing Principles and a documented Fact-Check Policy to ensure accuracy, transparency, and editorial independence across all content.

Add CoinLaw as a Preferred Source on Google for instant updates! Follow on Google News
Share ChatGPT Perplexity

References

  • Aztec Bridge Exploit Attacker Transaction History | Etherscan.io
Kelvin Scott

Kelvin Scott

Finance News Analyst


Kelvin Scott, with over 8 years of experience, covers the latest trends in digital assets, financial markets, and regulatory developments. With a strong focus on accuracy and clarity, he delivers timely updates to help readers navigate the fast-changing world of crypto and finance. An avid football fan, he never misses a chance to watch a good match, whether it’s Premier League drama or a local game.

Related Posts

Dxsale Hack Drains 7 3m In Bnb
Cryptocurrency

DxSale Hack Drains $7.3M as Insider Access Claims Surface

Aave Mantle Lido Unite To Contain Loss From Kelpdao Hack
Cryptocurrency

Aave, Mantle, Lido Unite to Contain Loss From $292M Crypto Hack

Kelp Dao Suffers 292m Usd Hack
Cryptocurrency

Kelp DAO Exploit Drains $292M, Lazarus Group Suspected

Disclaimer: The content published on CoinLaw is intended solely for informational and educational purposes. It does not constitute financial, legal, or investment advice, nor does it reflect the views or recommendations of CoinLaw regarding the buying, selling, or holding of any assets. All investments carry risk, and you should conduct your own research or consult with a qualified advisor before making any financial decisions. You use the information on this website entirely at your own risk.

Reader Interactions

Leave a Comment Cancel reply

Primary Sidebar

Connect With Us

facebook x linkedin google-news telegram pinterest whatsapp email
google-preferred-source-badge Add as a preferred source on Google

You Should Also Read

Secret Network Suffers $4.67M Loss in Bridge Exploit
Taiko Hack Sparks Emergency Bridge Exit After $1.7M Loss
Gravity Bridge Halts Operations After $5.4 Million Crypto Exploit

Table of Contents

  • Key Takeaways
  • What Happened?
  • Second Exploit Hits Aztec Within Days
  • How the Attack Worked?
  • Aztec Says Current Network Remains Unaffected
  • Legacy Smart Contracts Under Fresh Scrutiny
  • CoinLaw’s Takeaway
Connect on Telegram

Footer

CoinLaw Logo

Bringing Finance Closer to You.

Connect With Us

Follow Us on Google News

Editorial & Trust

  • About
  • Publishing Principles
  • Fact-Check Policy
  • Corrections Policy
  • Ethics Policy
  • Disclaimer
  • Cookie Policy

Worth Checking

  • Best Cloud Mining Platforms
  • Millennial vs. Gen Z Banking
  • Ethereum Gas Fees Statistics
  • Binance vs. Coinbase Statistics
  • Zelle vs. Venmo Statistics
  • Traditional Banks vs. Neobanks
  • Crypto Exchange Hack Statistics
Contact Us
13570 Grove Dr #189,
Maple Grove, MN 55311,
United States
10 a.m. – 6 p.m. | Every day

Copyright © 2024–2026 CoinLaw. All Rights Reserved. Powered by the HODL Force ❤️

  • Privacy Policy
  • Terms
  • Accessibility Statement
Manage your privacy

To provide the best experiences, we and our partners use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us and our partners to process personal data such as browsing behavior or unique IDs on this site and show (non-) personalized ads. Not consenting or withdrawing consent, may adversely affect certain features and functions.

Click below to consent to the above or make granular choices. Your choices will be applied to this site only. You can change your settings at any time, including withdrawing your consent, by using the toggles on the Cookie Policy, or by clicking on the manage consent button at the bottom of the screen.

Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Statistics

Marketing

Features
Always active

Always active
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
Manage options
  • {title}
  • {title}
  • {title}
Manage your privacy
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Statistics

Marketing

Features
Always active

Always active
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
Manage options
  • {title}
  • {title}
  • {title}
Company
  • About Us
  • Our Team
  • Our Mission
  • Core Values
Discover
  • glossary icon
    Glossary
  • Stats
    Stats Research Process
  • Brand Guide Icon
    Brand Assets
Categories
  • Cryptocurrency
  • Payments
  • Banking
  • Finance
  • Insurance
Cryptocurrency
Crypto Market Capitalization Statistics
Crypto Market Capitalization Statistics 2026: Totals, Dominance, and Trends
How Many People Use Cryptocurrency Worldwide
How Many People Use Cryptocurrency Worldwide 2026: Global User Count by Year and Region
Stablecoin Market Cap Statistics
Stablecoin Market Cap Statistics 2026: Issuer Share and Growth
Coinbase vs Kraken Statistics
Coinbase vs Kraken Statistics 2026: Volume, Fees, Licenses
Solana vs Ethereum Statistics
Solana vs Ethereum Statistics 2026: TVL, Fees, Validators, ETFs
Uniswap vs PancakeSwap Statistics
Uniswap vs PancakeSwap Statistics 2026: Head-to-Head DEX Data
Payments
Remittances By Country Statistics
Remittances by Country Statistics 2026: Inflows and Cost
Cash App vs Zelle Statistics
Cash App vs Zelle Statistics 2026: Speed, Limits and User Data
Venmo vs. PayPal Statistics
Venmo vs PayPal Statistics 2026: Users, Fees and Volume
Toast Statistics
Toast Statistics 2026: ARR, GPV & Revenue Data
Rapyd Statistics
Rapyd Statistics 2026: TPV, Valuation & Licences
Marqeta Statistics
Marqeta Statistics 2026: TPV, Revenue and Customer Mix
Banking
The 15 Largest Banks in the US
The 15 Largest Banks in the US in 2026: By Assets, Deposits, and Branches
N26 Statistics
N26 Statistics 2026: Customers, Deposits, Revenue and the BaFin Growth Cap
Revolut vs Monzo Statistics
Revolut vs Monzo Statistics 2026: Customers & Profit
Islamic Banking Statistics
Islamic Banking Statistics 2026: Assets, Growth, and Top Markets
Credit Union Statistics
Credit Union Statistics 2026: Assets, Members, Loans
Banking API Statistics
Banking API Statistics 2026: Market Size, Adoption, and Growth
Finance
Emergency Fund Statistics
Emergency Fund Statistics 2026: How Much Americans Have Saved (and How Much They Should)
Financial Advisor Statistics
Financial Advisor Statistics 2026: Headcount, AUM, and Demographics
Wealth Inequality Statistics
Wealth Inequality Statistics 2026: Hidden Wealth Divide
Blockchain In Supply Chain Finance Statistics
Blockchain in Supply Chain Finance Statistics 2026: Trade Breakthrough
Blockchain In Healthcare Finance Statistics
Blockchain in Healthcare Finance Statistics 2026: Cost Breakthrough
AI-Powered Robo Trading Statistics
AI-Powered Robo Trading Statistics 2026: Big Insights
Insurance
Lemonade Insurance Statistics
Lemonade Insurance Statistics 2026: Customers, In-Force Premium, Loss Ratio, Pet & Auto Segments
Chubb Statistics
Chubb Statistics 2026: Powerful Data Insights
Virtual Reality In Insurance Statistics
Virtual Reality In Insurance Statistics 2026: Innovations, Risks, and Opportunities
US Life Insurance Industry Statistics
US Life Insurance Industry Statistics 2026: Growth Facts
US Auto Insurance Industry Statistics
US Auto Insurance Industry Statistics 2026: What You Must Know Now
UK Insurance Industry Statistics
UK Insurance Industry Statistics 2026: Growth Data
Categories
  • Cryptocurrency
  • Investments
  • Fintech
  • Compliance
  • Finance
Cryptocurrency
Clearstream Adds Xrp Solana Ada To Crypto Custody
Clearstream Adds XRP, Solana, ADA to Crypto Custody
Base Activates B20 Native Token Standard
Base Activates B20 Native Token Standard For Onchain Assets
Rbi Supports Crypto Ban In India
RBI Backs Crypto Ban in New Government Submission
Toss Signs Optimism Deal For Won Stablecoin Trial
Toss Signs Optimism Deal for Won Stablecoin Trial
Secret Network Proposes Scrt Migration To Arbitrum
Secret Network Proposes SCRT Migration to Arbitrum
Polymarket Enables Bitcoin Lightning Deposits Via Spark
Polymarket Enables Bitcoin Lightning Deposits via Spark
Investments
Former Tether Cio Seeks To Sell 1 26 Stake
Former Tether CIO Seeks to Sell 1.26% Stake via PJT Partners
Binance Reportedly Set To Lead Mesh S 2b Round
Binance Reportedly Set to Lead Mesh’s $2B Round
Kiwoom Chases Bithumb Stake South Korea
Kiwoom Chases Bithumb Stake as South Korea Crypto Expands
Sbi Seals 288m Bitbank Acquisition
SBI Seals $288M Bitbank Acquisition to Expand in Japan
Kraken Plans 72m Investment In Aave For A Stake
Kraken Eyes Major Aave Deal With $71M Investment Plan
Bybit Launches Pwm 2 0 For Vip2 Wealth Investors
Bybit Launches PWM 2.0 for VIP2+ Wealth Investors
Fintech
21shares Drops Cf Benchmarks For Ftse Across All Crypto Etfs
21Shares Drops CF Benchmarks for FTSE Across Six Crypto ETFs
Crypto Com Launches Loaded Lions Mane City Mobile
Crypto.com Launches Loaded Lions: Mane City Mobile
Sberbank Plans Russian Crypto Wallet Launch
Sberbank Plans Crypto Wallet as Russia Licenses Market
Bitgo Slashes 15 Of Jobs
BitGo Slashes 15% of Jobs to Accelerate AI and Stablecoins
Certik Joins Xdc Network As Validator
CertiK Joins XDC Network to Advance RWA Adoption
Meta Plans Arena Prediction Markets App
Meta Plans Arena Prediction Markets App to Rival Polymarket
Compliance
Coinbase Wins Uk Mifid License For Stocks And Derivatives
Coinbase Wins UK MiFID License for Stocks and Derivatives
South Korea Court Proposes Crypto Seizure Rules
South Korea Court Proposes Crypto Seizure Rules
Ripple Wins Full Mica Casp License In Luxembourg
Ripple Wins Full MiCA CASP License in Luxembourg
South Africa Unveils New Crypto Taxation Framework
SARS Publishes Draft Crypto Tax Guide for Comment
Bridge Secures Mica And Emi Licenses
Bridge Secures MiCA and EMI Licenses Across EU
Bank Of Russia Digital Ruble Rollout Ready
Bank of Russia: Digital Ruble Rollout Ready for September
Finance
Kraken Lets Traders Post Tokenized Stocks As Collateral
Kraken Lets Traders Post Tokenized Stocks as Collateral
Kalshi Targets Ipo After Massive Valuation
Kalshi Targets IPO After Massive Growth and $22B Valuation
Coinbase To Launch Tokenized Us Stocks
Coinbase Sparks New Race With 1:1 Backed Tokenized Stocks
Bitmine Launches 300m Preferred Stock Offering
Bitmine Launches $300M Preferred Stock to Buy More ETH
Coinbase Lists Spacex Pre Ipo Perpetual Futures
Coinbase Lists SpaceX Pre IPO Perpetual Futures
Binance Expands Into 24 7 Us Stocks Trading
Binance Expands Into US Stocks With New bStocks Service
Newsletter Img

Too much noise in crypto?

We respect your time. You get one high-impact briefing a week. If the market is quiet, so are we.

✅ Join readers from Visa, Vanguard, and the FDIC.
Newsletter Img

The Weekly Briefing

We track the market 24/7. You get a 5-minute summary. If it’s quiet, we skip it.

✅ Read by pros at Visa, Vanguard, and the FDIC.