Industry Events

The Ronin Bridge Hack: Anatomy of a 600 Million Dollar Loss

2026-05-29 · 链上迷雾

About 625 million dollars stolen. Six full days before anyone noticed. Five of nine validator nodes compromised.

Those three numbers more or less summarize the Ronin bridge hack of March 2022, at the time the largest single crypto theft outside of Mt.Gox. The attackers didn’t ship a clever new smart contract exploit. They didn’t break any cryptography. They simply convinced five of nine validators to sit on the same compromised side of a door, and then quietly signed a couple of transfers. This piece walks the timeline and the real reason five of those six relevant nodes fell at once.

Background: Axie Infinity and Ronin

In 2021, Vietnamese studio Sky Mavis ran the breakout play-to-earn game Axie Infinity: pets you bred, battled, and earned the in-game tokens SLP and AXS from. In parts of the Philippines, Vietnam and Indonesia, there was a stretch where families lived partly off Axie earnings.

But Axie’s success collided with an old problem: Ethereum gas was expensive. To keep the game accessible, Sky Mavis built its own sidechain, Ronin, to host all in-game transfers and battle logic. Between Ronin and Ethereum mainnet sat a cross-chain bridge: players locked ETH and USDC on Ethereum, the bridge minted matching tokens on Ronin. The bridge’s security depended entirely on a set of validator nodes that multi-signed every cross-chain withdrawal. It rhymes with the difference between CEX and DEX: you weren’t trusting code so much as a specific set of people and keys.

Nine validators, five signatures gets you through

The Ronin bridge’s setup was: nine validator nodes total, and five signatures were enough to authorize a withdrawal. By industry standards that threshold isn’t outrageous. But here’s the detail: Sky Mavis itself directly operated four of those nine nodes. So an attacker only had to compromise one additional outside node to reach the quorum.

It got worse. One of the remaining five validators was Axie DAO. Back in November 2021, during a player traffic surge, Axie DAO had temporarily authorized Sky Mavis to sign on its behalf. That delegation was never revoked. So on paper you needed five independent nodes; in practice, capturing Sky Mavis’s four sets of keys gave you five votes.

A symbolic cross-chain bridge cracking open, data streams flowing out like spilled light

How the attack happened: spear-phished keys

Step one, social engineering. A senior engineer at Sky Mavis was cultivated for weeks over LinkedIn by what appeared to be a recruiter from a non-existent company. Multiple rounds of “interviews,” and finally a “job offer” PDF.

Step two, a poisoned document. The engineer opened the PDF on a corporate machine. The document executed malicious code and gave the attackers an initial foothold inside Sky Mavis’s internal network.

Step three, lateral movement to validator nodes. From that foothold, the attackers obtained access to the four Ronin validator nodes operated internally by Sky Mavis.

Step four, exploiting the dangling Axie DAO delegation. The same captured keys could also sign on its behalf, giving the attackers a fifth valid signature.

Step five, two large withdrawals totalling roughly 625 million dollars at the time. No zero-day. No contract logic bug. Structurally this belongs to the same family as approval phishing and fake support scams, only the target was an engineer with the right keys.

Why nobody noticed for six days

The Ronin bridge at the time didn’t have automated reconciliation alerts. It relied on user behavior: somebody complaining that a withdrawal wouldn’t go through. The hack happened on March 23. The attackers didn’t immediately cash out the USDC, and the contract balance changes got mixed in with normal activity. On March 29, a player tried to withdraw 5,000 ETH from the bridge, found no funds, and pinged Sky Mavis. The team realized the bridge had been drained for six days.

That window gave the attackers nearly a full week of unhurried laundering through dozens of wallets, Tornado Cash, and cross-chain hops. Chainalysis and the FBI later attributed the attack to Lazarus Group, the North Korean state-affiliated outfit behind a long string of crypto thefts.

A ring of nodes around a center, with several gone dark and the connecting lines snapped

The aftermath

Sky Mavis paused the bridge and Katana DEX, raised emergency capital (a16z led a 150 million dollar round), and committed to fully reimbursing users. The validator set expanded from 9 to 21+ with independent operators (Binance, Animoca, Ubisoft). The lingering Axie DAO delegation was finally revoked. Real-time monitoring went in.

For ordinary users the takeaway is simple: once funds enter any bridge, your safety is the safety of that bridge’s validator set. It lines up with the same question you’d ask when choosing an exchange.

Why five of six relevant nodes all fell

Strip the story to its core and the fatal flaw wasn’t “an engineer got phished.” The fatal flaw was the structure of the validator set.

First, the nodes were concentrated in one company. Four of nine were operated by Sky Mavis. A single breach surrendered 44% of the network’s signing power. Same internal network, same engineering team, same credential store.

Second, a temporary authorization quietly turned into a permanent backdoor. The Axie DAO delegation should have expired the moment congestion eased; instead it sat forgotten in a config file. That one dangling delegation turned a 4 + 1 problem into a 5 problem.

Third, there was no routine rotation or auditing of signing authority. A validator set isn’t a one-time configuration; it’s an asset that needs scheduled audits and least-privilege defaults.

Together these collapsed “5 of 9 multisig” into something close to “1 of 1.” It’s the same line every cross-chain bridge security report has repeated since: the strength of a multisig isn’t the threshold number; it’s whether the keys behind it are actually independent. When a project advertises “multi-signature custody,” the real question isn’t how many signatures, but whether those signatures live on the same network, with the same operators, behind the same forgotten delegations.

This article is for education only and is not financial advice. Crypto is volatile and risky — only ever risk what you can afford to lose.

Latest

Industry Events

BTC ETFs Bled for 10 Straight Days, $2.97B Out — What It Means for Ordinary Users

Through June 4, US spot Bitcoin ETFs posted ten consecutive sessions of net outflows totaling about $2.97B — one of the longest negative streaks since launch. This piece breaks down what the number says and, just as important, what it does not.

Mindset & FOMO

AI Is Siphoning Crypto Money — Should You Chase the Rotation?

Early June showed a clear flow: money rotating from crypto into AI. Nvidia at a new high, BTC and ETH softer. "Is crypto past its prime" surfaced again. This piece does not pick a winner. It answers how mindset should behave during sector siphon.

Mindset & FOMO

ETH Slipped Below 2,000 — How Should the Believers Recalibrate?

ETH crossed below the 2,000 psychological line in early June while on-chain activity softened. For self-described "ETH believers," this is a subtler mindset test than the 2022 bear: not one obvious red candle but a slow grind lower.

Mindset & FOMO

BTC Broke Below 67k — Should You Buy the Dip? A June Mindset Check

BTC sliced through 67k in early June and briefly tested 61k intraday. The dip-buying itch is back. This piece does not call the next candle. It asks one question: at this level, what rules should your mindset follow before you click buy.

Mindset & FOMO

US–Iran Tension Escalating — How Should a Crypto Portfolio React?

Early June saw a fresh US–Iran flare-up — oil spiked, risk assets weakened, BTC and ETH dropped together. Headlines change every half day; positions cannot. Here is how a crypto portfolio should behave under geopolitical shocks.

Asset Security

After a Drainer Empties Your Wallet, Is There Any Path to Recovery?

Once you discover a drainer has emptied your wallet, what you can do in the next hour is limited, but the order matters. This post lays out the recovery paths along a timeline: on-chain tracing, platform freeze requests, formal reporting, mixer realities, and longer-term recovery.