A sign sitting on a metal strut of a bridge reads

There wasn't much security stopping a bunch of wandering strangers from breaking into the project's token bridge, allowing hundreds of unknown hackers and some users to walk away with over $196 million in coins.

Users began to notice that the token was being pulled from the accounts in million-dollar chunks. A routine upgrade that allowed bad actors to skip verification messages caused the bridge protocol to be compromised, according to CertiK. The first transaction took about $2.3 million from the bridge.

The bridge was turned into a Black Friday-esque free-for-all because of the breach. The vulnerability was in the token bridge's initialization process, which allowed users to copy and paste the original hackers transaction number and replace it with a personal one, according to CertiK. The protocol was drained in just four hours, researchers said.

The first crowd-looting of a 9-figure bridge in history was the first attack of its kind in the world. Hundreds of addresses show they received token from the bridge during the exploit.

Some users have returned to the protocol and offered to return the funds they stole. Some people said it was an accident while others said they were protecting their friend's assets. According to DefiLlama, the current value of the ledger is close to $16,000.

Gizmodo was unable to verify any of the claims made by the people who said they drained funds and were waiting to get their money back. The representative said they were grateful for many whitehackers.

Nomad said it was working around theclock to address the situation. The developers contacted law enforcement to locate and recover the funds. The company used to believe in a security-first, cross-chain future.

A few months ago, Nomad won $22 million in a seed round led by Polychain Capital, which was a big win for the company.

There are other bridges that have been hacked this year. The developers of a play-to-earn game were the victims of a cyber attack earlier this year. The hackers were able to exploit the network by contacting a developer on LinkedIn, and after several rounds of interviews, offered him a fake job offer PDF that contained malicious software. They haven't fully restored past users' trust in their systems despite efforts to return users' stolencryptocurrencies.