alphmax🔥 ℵ

Bridge Update The unauthorized wrapped ALPH held in the attacker's wallet was burned yesterday. 500,000 unbacked wrapped ALPH had already been sold on Uniswap prior to the burn. Alephium will supply the native ALPH required to back these tokens. For users affected by the drained bridge assets, we remain committed to making them whole and are working on the best path forward. Following the burn, the most likely path forward is now a relaunch of bridge operations. We currently believe this is the fastest, safest, and simplest solution. Once the bridge is safely restored, users would be able to redeem through the bridge as originally intended. A separate redemption process for wALPH holders remains a fallback option if needed. The vulnerability has been fixed. We're conducting extensive review and security assessments before any relaunch, as we prioritize security over speed. This is our most likely path, though it may evolve as reviews progress. Full postmortem and further updates to follow.

Powfi Update 💥 Following very positive discussions with several partners, the Powfi codebase has been upgraded to support direct integrations with our $ALPH Staking Layer through a referral-based framework. How it works: Traditional B2C Workflow ▪️ A user holds ALPH ▪️ Connects their wallet to Powfi ▪️ Stakes their ALPH ▪️ User starts earning rewards New B2B2C Partner Workflow ▪️ An integration partner offers ALPH staking to its users ▪️ The yield offered is the same as staking natively on Powfi ▪️ Staking is attributed to the partner via an on-chain referral tag ▪️ ALPH is staked via the Powfi Staking Layer ▪️ The partner earns a commission One example from our recent discussions is a mining pool offering ALPH Staking to its users. Other potential integration partners include: wallets, centralized exchanges, and of course dApps. This is how the Powfi staking layer scales and maximizes locked circulating supply, strengthening $ALPH and the broader ecosystem. We'll share more updates as these conversations progress and integrations begin to materialize.

Bridge Update Over the past 48 hours, the team has been working around the clock on recovery, remediation, investigation, and the future of the bridge. With regards to legitimate wALPH and corresponding native ALPH: the exact technical implementation for recovery of funds is still being evaluated and depends on several factors. Regardless of the implementation chosen, the objective remains the same: legitimate holders will be able to recover their ALPH, while assets illegitimately created through the exploit will not benefit from the recovery process. We continue to work with security and investigation partners to trace the drained assets and assess possible recovery opportunities and we are grateful for their ongoing support. At the same time, we are initiating coordination with legal counsel, relevant authorities, and law enforcement regarding the incident. Further updates will be shared throughout the week as work progresses.

Important Reminder 🚨 There are accounts impersonating Alephium, our team, and our moderators across all social media channels. We do NOT have a ticket system or support team. Do not share your private keys with anyone, and do not click links from unverified sources. Please verify account names carefully before engaging. We will never DM you first, and all official updates will come from verified Alephium channels only. Thank you. Alephium Team.

💬 Onchain Message: To the individual responsible for the Alephium bridge exploit: We are prepared to treat this incident as a white hat disclosure under the following terms: 1. Return 90% of the drained assets to: 0x238640C0F74A95485e986Fa26D434fF7B216D058 within 72 hours of this message. 2. You may retain 10% of the returned assets as a white hat bounty. Upon receipt of the 90%, Alephium will consider the matter resolved and will publicly acknowledge your cooperation. Contact [email protected] with a message signed by one of the addresses involved in the exploit for further communication. We would prefer to resolve this matter quickly and cooperatively for the benefit of affected users. Alephium Team https://t.co/neFjYBp0uQ

Update on the Alephium Bridge Exploit The bridge was shut down shortly after the exploit was identified. No new bridge transactions can be initiated, and the exploit can no longer be executed. Please withdraw your liquidity and do not swap from ALPH pools on Uniswap or PancakeSwap until further notice. Confirmed impacts of the exploit: 1. Assets illegitimately drained from the bridge The assets confirmed to have been drained are: Ethereum • 200,967 USDT • 17,594 USDC • 5.18 WETH • 0.335 WBTC BNB Chain • 36,750 USDT • 24.386 WBNB The affected assets included both user funds and assets belonging to Alephium. We are currently exploring all available options to compensate affected users. Our objective is to make affected users whole, and we are committed to working toward that outcome. We recognize that this process may take time, but supporting affected users remains a priority for the team. 2. Minting of approximately 13.7 million wrapped ALPH on Ethereum However, ALPH held within the bridge was not drained. Users whose ALPH remained locked in the bridge at the time of the shutdown will be able to recover their funds. We will provide a dedicated recovery process allowing affected users to reclaim their ALPH. Because the bridge has been shut down, the attacker cannot redeem or bridge these wrapped ALPH back through the Alephium bridge. We therefore ask users not to provide liquidity to ALPH pools on Ethereum or BNB Chain, to withdraw any existing liquidity, and not to swap against these pools. Additional liquidity or trading activity would increase the attacker’s ability to realize value from the unauthorized wrapped ALPH.