Syndicate, the Ethereum-focused infrastructure project building customizable rollups and sequencers, disclosed early Wednesday that its Commons bridge had been compromised.
The team said it is actively tracing the attacker while working with security partners and reviewing ways to reimburse affected users.
On-chain data shows roughly 18.45 million $SYND tokens were drained through the bridge’s proxy contract on Base. The attacker quickly dumped the haul for an estimated $330,000–$400,000 before bridging proceeds to Ethereum.
The incident triggered immediate panic selling. $SYND dropped as much as 36% within hours, hitting lows near $0.019 before partially recovering to trade around $0.022–$0.034, depending on the venue. Trading volume spiked as holders rushed for the exits.
In a statement posted on X, Syndicate confirmed it holds sufficient token reserves to make users whole and urged liquidity providers to pause activity until further notice.
“We are investigating a compromise of the Commons bridge,” the team wrote. “We are tracing the attack and engaging with security firms.”Bridge exploits remain a stubborn vulnerability in DeFi, exposing users to rapid liquidity drains even in projects with established backing.
Syndicate’s Commons Chain uses $SYND as its native gas token, making the bridge a critical piece of infrastructure for cross-chain transfers between Ethereum, Base, and its own rollup environment.
At press time, the project had not released a full technical postmortem or identified the root cause—whether a smart-contract flaw, key compromise, or upgrade privilege escalation.
Also read: EIP-7702 Flaw Drains 1,988 QNT From Ethereum Pool