Overview

• Developers say the September exploit used three fraudulent checkpoints and a short‑term 4.6 million BONE delegation to push a malicious state on Shibarium’s Ethereum contracts.
• Heimdall halted checkpointing as a containment step while teams ran round‑the‑clock remediation with independent review from Hexens.io.
• The malicious delegation was removed by updating the staking ledger via StakeManager’s AdminConsumeLegacyBound process, recovering 4.6 million BONE.
• Security hardening included rotating all validator keys, migrating 100+ critical contracts to multi‑signature custody, extending withdrawals to 30 checkpoints, and moving keys to hardware.
• Plans call for a blacklist mechanism on the Plasma Bridge, a test‑verified, phased restart, and user refunds after a reported theft of roughly $4 million, with law enforcement notified following failed negotiations.