Flow Blockchain Receives Pushback on Recovery Rollback After $3.9M Hack

Flow Blockchain faces backlash after a $3.9M hack, as partners question a proposed rollback and its risks to users and trust ahead.

Flow Blockchain entered a recovery phase after a $3.9 million exploit hit its ecosystem.

The incident raised worries across the network, especially among developers, validators and partners. In response, Flow Blockchain reacted with a new proposal, and the next few weeks will test whether these steps can restore confidence.

Flow Blockchain Exploit Shakes Parts of the Network

Flow Blockchain confirmed the security incident on December 27, when an attacker found a flaw in the network’s execution layer, which allowed them to mint and move assets across several services.

Wallets linked to NFT marketplaces and liquidity pools were affected and several smart contracts built by ecosystem partners also suffered damage. The attacker drained funds in less than thirty minutes before validators noticed unusual activity.

Once detected, validators halted the network and this move cut off exit paths and stopped further losses. Roughly $3.9 million in FLOW tokens and NFTs were siphoned off before the halt.

Flow Blockchain stated that the core protocol and consensus layer were secure and that existing user balances were never accessed.

UPDATE: ISOLATED RECOVERY PLAN

Flow Foundation has developed a revised remediation plan working with ecosystem partners. This approach was developed following direct consultation with bridge operators, exchanges, and infrastructure partners.

WHAT THIS MEANS
→ No network…

— Flow.com (@flow_blockchain) December 29, 2025

How the Exploit Worked and Why It Spread Quickly

Early investigations traced the exploit to a cross contract communication flaw. This weakness allowed the attacker to modify permission letters before rerouting funds out of the protocol.

Because many applications shared components, the exploit spread fast and several decentralised services suffered cascading effects.

Patched versions of affected contracts were deployed soon after and third party cybersecurity firms joined the audit process. These steps were aimed at preventing similar failures in the future.

Funds Tracked as Flow Blockchain Secures the Network

Flow Blockchain worked with forensic partner Find Labs to track the stolen assets, with most of the funds found to have moved through cross-chain bridges like Celer, deBridge, Relay and Stargate.

From there, assets reached Ethereum, and investigators also found attempts to launder funds through THORChain and Chainflip.

Freeze requests have so far been sent to major exchanges and stablecoin issuers, and the Flow Blockchain continues to stress that the stolen amount does not threaten the network itself.

_Related Reading: Flow Blockchain Prepares Full Restart After $3.9M Bridge Exploit
_

Rollback Plan Triggers Pushback From Partners

Shortly after the exploit, Flow Blockchain proposed a rollback. The plan aimed to reverse part of the chain’s history. The hacker’s unauthorised mints would be erased, and the ledger restored to a clean checkpoint.

However, there has been pushback from partners, as several said they learned about the rollback after public announcements.

🚨 @flow_blockchain’s planned controversial rollback after a $3.9M exploit draws backlash from “blindsided” ecosystem partners#Flow #Blockchain #Exploithttps://t.co/A8w3rJJAUn

— Cryptonews.com (@cryptonews) December 29, 2025

The proposal is receiving pushback because such a rollback could create double balances for some users. Others who bridged assets into Flow during the rollback window might also face losses.

So far, the FLOW token price has dropped and some exchanges have paused transactions.

Overall, partners and users will be watching closely as full activity resumes. The success of this recovery could determine Flow’s role in consumer focused blockchain use cases.