Hackers successfully printed and sold 1 billion fake DOT tokens on the Ethereum mainnet, according to blockchain security firm CertiK.

The incident, which occurred on April 13, 2026, stemmed from a vulnerability in the Hyperbridge cross-chain gateway. According to CertiK, the attacker exploited this flaw to forge messages and take control of the administrator role for a Polkadot (DOT) token contract on Ethereum.

With these elevated privileges, the hacker minted 1 billion bridged DOT tokens — an amount roughly 2,805 times the reported total supply of the bridged token. They then immediately swapped the newly minted tokens through decentralized exchanges like OdosRouter and Uniswap V4.

Due to limited liquidity, the massive sell-off drove the token's price from $1.22 to near zero. The attacker netted approximately $237,000 (about 108.2 ETH) from the exploit.

CertiK noted that this attack specifically targeted the bridged DOT assets on Ethereum and did not affect Polkadot's native relay chain or its native DOT token
#dot #long