AlexLab’s XLink bridge on BNB was exploited after a compromised private key let the attacker take over an ALEX liquidity-pool vault and make malicious proxy-contract upgrades. The incident drained about $4.3 million in assets, including roughly 13.7 million STX, with some funds moved quickly to centralized exchanges before freezes and recovery efforts began. AlexLab offered a 10% bounty, shared forensic data with exchanges, and considered treasury grants or token reissuance to compensate affected users. The excerpt ties the activity to phishing for private keys and mentions a possible repeat offender, but it does not attribute the exploit to Lazarus or another DPRK actor.