Multichain — bridge collapse

What happened

On 6 July 2023, approximately $130 million in digital assets was drained from Multichain’s cross-chain bridge contracts deployed on Fantom, Moonriver, and Dogechain. The assets withdrawn included USDC, USDT, ETH, WBTC, and DAI. The Multichain team, in a statement posted the same day, described the movements as “abnormal” and said the team was unable to determine whether they were authorised or what had caused them. This inability to characterise the transactions as simply a hack was itself revealing: the team did not know who had made the withdrawals.

The explanation emerged gradually. In May 2023, approximately six weeks before the drain, Chinese authorities had arrested Zhaojun, Multichain’s founder and CEO. Shortly after, Zhaojun’s sister — who also had access to Multichain’s operational server infrastructure and, reportedly, to the MPC (multi-party computation) key material that controlled the bridge — was also detained. The Multichain team had told the community that Zhaojun had “disappeared” and was unreachable, but had not disclosed the arrests.

With both the CEO and his sister detained, and Chinese authorities holding servers and key material, the bridge’s funds were effectively accessible to an unknown party — either Chinese law enforcement acting on the seized infrastructure, a person or persons with pre-existing access to the key material, or an external attacker who exploited the leaderless transition period. Multichain announced a permanent shutdown in July 2023. Users who had funds in transit or locked in the bridge’s smart contracts sustained unrecovered losses.

How it worked

Multichain operated as a cross-chain bridge using a model in which a set of privileged actors — nominally decentralised but in practice heavily concentrated — controlled the keys required to authorise the release of locked bridge assets. The specific custody model in use at the time of the collapse involved MPC (multi-party computation) key shards distributed across a network of nodes. The critical architectural failure was that Zhaojun, the CEO, held administrative control over the infrastructure running a significant portion of those nodes and the key generation and management processes.

In a genuinely decentralised MPC key-custody system, the loss of any one party’s shard — even a party controlling many nodes — should not be sufficient to produce the full operational key. The Multichain architecture, however, concentrated key-management authority in a way that made the CEO’s individual control practically equivalent to custody of the full key. When the CEO and his sister (who had access to supporting infrastructure) were detained by Chinese police, and Chinese authorities seized the servers those systems ran on, whoever held the seized infrastructure held effective control of the bridge’s keys.

The $130 million outflow was not preceded by any detected external intrusion. The withdrawal transactions were structured as legitimate bridge operations — they used the correct contract call patterns and were signed by the key material that the contracts recognised as authoritative. The community’s uncertainty about whether the transactions were “authorised” reflects the fact that, from the contracts’ perspective, they were — the correct keys were used. The question of whether the humans who used those keys had legitimate authority to do so is a legal and governance question that the smart contracts cannot answer.

Timeline

• May 2023 — Chinese police detain Zhaojun (Multichain CEO) and his sister; servers and key-management infrastructure seized. Multichain team does not disclose the arrests; publicly states Zhaojun is “unreachable.”
• May–June 2023 — Multichain continues operating with degraded team and unavailable CEO; community grows increasingly concerned about unusual operational delays.
• 6 July 2023 — $130 million drained from Multichain bridge contracts on Fantom, Moonriver, and Dogechain. Multichain team posts statement describing the outflows as “abnormal.”
• July 2023 — Multichain announces indefinite suspension of all services.
• 14 July 2023 — CoinDesk reports the arrests of Zhaojun and his sister; Chinese authorities confirm asset seizures and detained operatives.
• 2023 onwards — Protocol does not reopen; $130 million in user funds unrecovered. Industry analysis identifies the custody model as the causal factor.

What defenders should learn

The Multichain collapse is not, at its core, a hacking incident. It is a single-jurisdiction key-custody failure. The technical infrastructure was not compromised by an external attacker exploiting a software vulnerability. The protocol failed because the humans and hardware that held effective key custody became unavailable — due to the legal jurisdiction of a single government acting on a single individual.

The first lesson is jurisdictional concentration. Any protocol whose operational continuity depends on individuals who are physically located in, or whose assets are accessible by, a single national jurisdiction is exposed to the full range of actions that jurisdiction can take: arrest, detention, asset seizure, compelled disclosure. Protocols that represent themselves as decentralised must design their custody architecture to be genuinely resistant to single-jurisdiction action. That means key material held by signers in multiple jurisdictions, with no single jurisdiction able to compel enough signers to produce the operational key.

The second lesson is that key-management authority must be genuinely distributed, not nominally distributed with a de facto single administrator. Multichain’s MPC model was described as distributed but was operationally controlled by the CEO and his sister. The architecture matched the marketing but not the threat model. Genuine operational decentralisation requires that no single individual’s unavailability — whether due to arrest, death, incapacitation, or resignation — can produce the private key or halt the protocol. Implementing this requires technical controls (threshold signatures with geographically and jurisdictionally distributed signers), not just governance policies.

The third lesson is disclosure. When Multichain’s CEO was arrested and its infrastructure seized, the team chose not to disclose this to the community. Users continued to lock funds in the bridge for weeks without knowing that its operational continuity was in serious jeopardy. Material changes to the operational status of a financial protocol — including the unavailability of key personnel and the seizure of operational infrastructure — are events that users are entitled to know about. The industry norm of withholding this information to avoid a “bank run” damages user trust more than transparent disclosure would.