THORChain, a blockchain protocol with the audacity to think it’s immune to chaos, has become the punchline of crypto’s latest joke after proposing to keep its patched GG20 signing framework-the very system that let a hacker walk off with $10.7 million like it was a magic trick. Critics are asking, “Is this a security flaw or a comedy of errors?”
According to a post-mortem report (because nothing says “trust us” like a post-mortem), a malicious node operator exploited GG20’s “progressive key material leakage” to reconstruct a private key. Imagine that: your vault gets robbed because the lock forgot how to not leak its secrets. Within minutes, THORChain’s automatic solvency checks (a fancy term for “panic button”) shut down cross-chain trading. Classic-halt the chaos, but not the memes.
Why are security researchers questioning the GG20 framework?
Analyst Bird took to X to say GG20’s flaw might be a “randomness generation issue or local signing isolation.” Translation: “We don’t know what we broke, but we’re sure it’s not us.” Meanwhile, investor JP called GG20 a “black box” of “brittle assumptions,” which is crypto-speak for “this is a dumpster fire waiting to be relit.”
ADR-028, the proposal to keep GG20 with upgrades, has critics howling. “Replace it!” they scream. “No, patch it!” says THORChain. It’s like telling your car mechanic to fix a rocket engine with duct tape and hope.
How does the attack fit into rising crypto security threats?
As if the GG20 saga wasn’t enough, THORChain co-founder JP Thor lost $1.3 million to a deepfake Zoom call. Turns out, North Korean hackers are now casting for crypto roles on LinkedIn. “Hey, I’m a friend! Let’s clone your iCloud and steal your MetaMask!” Sure, why not?
PeckShield, the firm that caught this, noted the attack used a fake Telegram account and a video feed so convincing, even Johnny Carson would’ve said, “That’s a wrap.” Meanwhile, TRM and law enforcement linked North Korea to the $1.5B Bybit heist, proving hackers now have better résumés than Wall Street bankers.
In the end, THORChain plans to slash the malicious node and rebuild liquidity without minting new tokens. Because nothing says “recovery” like asking investors to hold their losses while you tinker with a system that just handed $10.7 million to a stranger. Cha-ching, cha-ching.
Read More
- HYPE PREDICTION. HYPE cryptocurrency
- PI PREDICTION. PI cryptocurrency
- Brent Oil Forecast
- USD JPY PREDICTION
- ONDO PREDICTION. ONDO cryptocurrency
- FIL PREDICTION. FIL cryptocurrency
- USD ZAR PREDICTION
- USD CNY PREDICTION
- USD VND PREDICTION
- DOGE PREDICTION. DOGE cryptocurrency
2026-05-22 17:40