Saga pauses SagaEVM after roughly $7M drained in smart-contract exploit
Saga has paused its SagaEVM chain following a smart-contract exploit that resulted in the loss of about $7 million in bridged assets. The team confirmed the incident on X on Jan. 21, saying SagaEVM was halted at block height 6,593,800 while investigators work to contain and remediate the breach.
What happened
Saga’s preliminary investigation indicates attackers carried out a coordinated sequence of contract deployments and cross‑chain transactions. The malicious actors withdrew liquidity from the chainlet, bridged assets off-chain and moved funds to the Ethereum mainnet. Around $7 million in bridged assets — primarily USDC, with yUSD, ETH and tBTC also involved — were extracted and some converted to ETH.
Containment and scope
To stop further movement, Saga has paused SagaEVM and restricted related cross‑chain activity. The team is working with exchanges and bridge operators to blacklist the addresses involved and limit additional transfers. SagaEVM remains offline while engineers analyze archive data and execution traces to determine the full scope of the incident.
Importantly, Saga says the impact was contained to the SagaEVM chainlet and the Colt and Mustang environments. The SSC mainnet, protocol consensus, validators and other chainlets were not affected. The company also emphasized there was no consensus failure, no validator compromise and no signer key leakage.
Mitigation and next steps
Saga reports it has added safeguards to block similar attack patterns, continues forensic analysis with security partners, and plans to keep the chain down until remediation is complete and no additional risk is detected. The team has pledged to publish a comprehensive technical post‑mortem once findings are fully validated.
Market context
This incident is the latest in a spate of smart‑contract and cross‑chain exploits observed in late 2025 and early 2026, highlighting ongoing vulnerabilities in bridge and chainlet architectures. Saga says it will continue to share confirmed updates as its investigation proceeds.
Read more AI-generated news on: undefined/news
