CrossCurve @crosscurvefi (ex https://t.co/CWpeosFH0U) has been exploited for around 3 million on several networks.
Anyone could call expressExecute on ReceiverAxelar contract with a spoofed cross-chain message, bypassing gateway validation and triggering unlock on PortalV2.
Victim (PortalV2): https://t.co/OOIzDqm4My
Vulnerable contract (ReceiverAxelar): https://t.co/0hHh2s0RiY
Attackers:
https://t.co/4I1y9Eotwt
https://t.co/70EAWAx68T