ZetaChain has temporarily paused cross-chain transactions after an attack targeted its GatewayEVM contract, marking the latest security incident involving blockchain interoperability infrastructure.
The layer-1 blockchain said the exploit affected internal team wallets only and that no user funds were compromised. Developers added that the attack vector had been contained, with no further losses expected, while a full post-mortem report will be released following the investigation.
As a precaution, cross-chain transfers across connected networks remain suspended while engineers complete remediation work and review system security.
Attack centered on GatewayEVM contract
ZetaChain’s GatewayEVM contract serves as a core interface for cross-chain interactions between external EVM-compatible networks and applications deployed on ZetaChain. The contract enables token transfers and smart contract calls across multiple connected chains, making it a critical component of the protocol’s interoperability architecture.
Because gateway contracts coordinate assets and messaging between networks, they are often considered high-value targets for attackers. Security researchers have repeatedly identified bridges and interoperability layers as among the most vulnerable areas of decentralized finance.
Early third-party analysis suggested the exploit may have involved weaknesses in contract controls or input validation, though ZetaChain has not yet confirmed a formal technical cause.
The protocol has not publicly disclosed the exact financial impact. External estimates have circulated, but no verified figure has been released by the development team.
Cross-chain sector remains under scrutiny
The incident adds to a growing list of exploits involving cross-chain systems, a category that has historically accounted for some of the largest losses in the crypto market. Previous attacks on bridge infrastructure have exposed structural vulnerabilities across the sector.
These systems often manage large pools of collateral or depend on complex validator and messaging frameworks, creating multiple attack surfaces. Security failures in such architecture can trigger not only direct losses but also broader confidence concerns across connected ecosystems.
ZetaChain launched its mainnet as a universal blockchain designed to connect networks such as Bitcoin, Ethereum, and other ecosystems through native interoperability. The project has attracted attention for seeking to simplify cross-chain application development and asset movement.
The temporary suspension of cross-chain functionality is likely to disrupt user activity, liquidity routing, and application flows built on the network until services are restored. Protocol teams often halt bridge functions during incidents to prevent secondary losses or exploitation of related components.
For users and investors, the immediate focus will be the forthcoming post-mortem report, which is expected to clarify how the exploit occurred, the scope of affected assets, and what security upgrades will be implemented before reopening transfers.
The event reinforces a broader trend in digital assets: as blockchain ecosystems compete on interoperability, security standards are becoming as important as transaction speed and cost.
While ZetaChain said user funds were unaffected, the incident underscores that even newer architectures remain exposed to smart contract risk. Confidence in cross-chain platforms increasingly depends not only on growth metrics, but also on their ability to respond quickly and transparently when vulnerabilities emerge.
