Two days after the events, the Litecoin development team published a final postmortem on two critical incidents related to the MimbleWimble Extension Block (MWEB) privacy protocol. The report reveals how a validation flaw first allowed the hidden creation of 85,034 LTC out of thin air, and later triggered a network reorganization affecting external protocols.
The March zero-day attack
In March 2026, a hacker discovered that MWEB inputs were not fully revalidated when blocks connected to the chain. This oversight made it possible to include mismatched metadata, making a small input appear much larger. The attacker exploited this by executing a peg-out operation, withdrawing from the confidential block into the mainnet and effectively minting 85,034 LTC. Because the exploit required direct block production, its scope remained limited. Miners and developers coordinated to freeze the affected outputs before they could be cashed out. The attacker cooperated, returning most funds in exchange for an agreed bounty of 850 LTC. Litecoin creator Charlie Lee personally purchased that 850 LTC to ensure the system's accounting balance was restored. The recovered funds were re-pegged into MWEB and locked. No confirmed user funds were lost.
The April reorganization
In April, a second attempt to exploit the same pathway was detected and rejected by updated nodes. However, the attempted attack exposed a mutated block data issue. Some upgraded miners froze while processing invalid data, unable to continue normal operations, while non-updated participants extended a 13-block invalid chain. The network experienced a split, but coordinated action by updated miners allowed them to extend the valid chain until it overtook the invalid one. The resulting reorganization removed all malicious blocks. However, before the correction, automated cross-chain protocols had already accepted transactions from the invalid chain. As a result, NEAR Intents suffered losses of 7.78 BTC and THORChain lost about 0.007 BTC. Litecoin Core 0.21.5.4 was released to fully close the vulnerability and prevent corrupted block data from interfering with future valid submissions.
Broader implications
The incident highlights how fragile interconnections between blockchains can be during periods of stress. Although Litecoin protected its own users and reached an agreement with the initial hacker, it could not prevent external DeFi protocols from absorbing the shockwave caused by the network reorganization. The response from developers and miners demonstrates that coordination, transparency, and rapid fixes can preserve long-term network integrity.
