So what exactly happened to CrossCurve? Without going unnecessarily deep into terminology, the issue was not a blockchain hack, but an unintuitive design pattern originating from the Axelar GMP SDK (v5.10.0) that can slip through even professional audits if the risk isn’t explicitly understood. The ReceiverAxelar contract itself had been audited and verified on-chain, yet the vulnerability sat deeper in an accelerated execution path for cross-chain messages, where a critical operation could be triggered without full source validation via the gateway. In CrossCurve’s specific case, the situation was further amplified by a weak confirmation threshold configuration (threshold = 1), which reduced the overall robustness of the validation model.
This incident is also a broader signal for Axelar integrators: by following official examples and inheriting from “express” execution contracts, projects can unintentionally expose a dangerous attack surface even if the rest of the code is correct and looks production-ready. Another important point is that the risk doesn’t disappear by itself when updating: even newer SDK versions contain similar patterns, and if teams migrate without recognizing the architectural issue, they may carry the risk forward. Practically, the takeaway is simple: any fast execution path must either be strictly restricted or reinforced with strong origin/authorization checks on the integrator side; otherwise, express-style mechanics can become a bypass of your own security assumptions.
At the same time, our stance on CrossCurve remains positive, and ironically, the complexity of their architecture makes this incident less of a universal, repeatable scenario than it might look at first glance. The exploit relied on a specific messenger/execution pattern (a particular SDK design choice), whereas the solution CrossCurve is now moving toward — and the one we are considering in our own products for secure cross-chain asset transfers — is not dependent on that vulnerable linkage. For that reason, even if we had already been integrated with CrossCurve at the time of the incident, this exact attack vector would not have impacted our architecture, because our trust and validation points are structured differently and do not rely on the same express execution path.
Finally, CrossCurve’s official update, published on February 13, 2026, effectively confirmed the conclusions our team reached independently. They are restoring the system in stages, starting with components that were not affected (the aggregator is already live, with routing via Rubic and Bungee), and then re-enabling the Token Bridge and Consensus Bridge with additional security measures. Notably, they stated the Consensus Bridge will only go live after completing enhanced security checks. This “restore only what is confidently verified, and harden before reactivation” approach aligns well with how we evaluate partner protocol maturity prior to integration.
That’s exactly why moving USDT from Tron into EVM networks isn’t as simple as plugging in a bridge and calling it a day. Tron is where a huge amount of USDT actually moves: fees were cheap (no more, hence the need for bridges), flows are familiar, and volumes are real. So when you say “we need Tron liquidity”, the real question is where the money sits, who’s allowed to move it, and what breaks when one assumption turns out to be wrong.
This article is here to slow that conversation down in a good way. I’ll walk you through the main ways USDT moves from Tron into EVM networks, how those approaches behave when real volume hits, and then step back to ask the only question that really matters: which risks are you actually willing to carry.
Hire us
About us
