On May 20, 2026, MAP Protocol's Butter Bridge suffered a severe exploit where attackers minted 1 quadrillion MAPO tokens, roughly 4.8 million times the legitimate supply of ~208 million. Security firm PeckShield detected a vulnerability in Butter Bridge V3.1's OmniServiceProxy contract, allowing unauthorized minting on Ethereum and BSC via a spoofed cross-chain message. The attacker swapped portions for 52.2 ETH (~$110,000) and pulled over $180,000 in Uniswap liquidity. MAPO price fell from $0.003 to $0.001558, a 30% drop. This incident highlights persistent risks in cross-chain infrastructure, adding to a 2026 trend of major bridge hacks. The project team has not yet announced mitigation steps.

Key facts

• 1 quadrillion MAPO minted on Ethereum and BSC via Butter Bridge V3.1 exploit.
• Exploiter swapped portions for 52.2 ETH and over $180,000 in Uniswap liquidity.
• MAPO price dropped nearly 30% from $0.003 to $0.001558.
• Vulnerability in OmniServiceProxy contract allowed spoofed cross-chain messages.
• Project team has not yet issued mitigation steps; holders urged to avoid affected pools.

KeyAudit data perspective