ZKsync Exploit Investigation Concludes with Full Fund Recovery
ZKsync Exploit Investigation Concludes with Full Fund Recovery
π The $5M Recovery Story
The investigation into the recent ZKsync exploit has concluded with the recovery of all compromised funds. The incident, caused by a compromised airdrop admin key, was limited to three Merkle distribution contracts from the June 2024 ZK token launch.
Key findings:
- Exploit minted
111M unclaimed ZK tokens (0.45% of total supply) - Protocol, token contract, and governance systems remained secure
- Matter Labs implemented temporary transaction filtering
- All funds have been recovered
The final incident report is available at ZKsync Mirror
Update: the investigation has revealed that the account that was the admin of the three airdrop distribution contracts had been compromised. The compromised account address is 0x842822c797049269A3c29464221995C56da5587D. The attacker called the sweepUnclaimed() function that
Update on the ongoing investigation, mitigation efforts, and path forward: Scope Summary The ongoing investigation has identified that this incident was caused by a compromised airdrop admin key, and is contained to three specific Merkle distribution contracts from the June 2024
ZKsync security team has identified a compromised admin account that took control of ~$5M worth of ZK tokens β the remaining unclaimed tokens from the ZKsync airdrop. Necessary security measures are being taken. All user funds are safe and have never been at risk. The ZKsync
Update: further investigation has confirmed yesterdayβs findings that the compromise was contained to the airdrop distribution contracts and no additional ZK tokens can be minted from this contract. User funds are secure and were never at risk. The ZKsync protocol, ZK token
The investigation into the recent exploit has concluded and the final report has been published on the ZKsync blog. The ZKsync Association, the ZKsync Foundation, and Matter Labs are thankful to our technical partners, security experts, exchanges, and the ZKsync community for
Tenderly Adds Full Support for zkSync Era
Tenderly has launched comprehensive support for zkSync Era, expanding development tools for the Ethereum Layer 2 network. The integration enables developers to: - Deploy smart contracts - Debug transactions - Run comprehensive tests - Monitor network activity This follows recent ecosystem growth, including zkSync Era's integration with Zapper.fi, which brought portfolio tracking for major DeFi protocols like SyncSwap, Mav Protocol, and KOI Finance. *Developers can now access a complete suite of tools for building on zkSync Era through the Tenderly platform.*
Nana Murugesan and Jeremy Allaire Discuss ZK Proofs on The Money Movement Podcast
Nana Murugesan joins Jeremy Allaire on The Money Movement podcast to explore zero-knowledge (ZK) proofs. The discussion covers: - The necessity of ZK-proofs for Ethereum scaling - ZK-powered applications in privacy and identity - How ZK technology is facilitating institutional adoption of blockchain This episode follows a recent trend of industry leaders discussing ZK technology. Previously, Sandy from Scroll emphasized the importance of developer-friendly tooling to drive real-world adoption of ZK proofs. **Listen to the full episode:** [YouTube Link](https://www.youtube.com/watch?v=oL7NM6chBQM)
ZKSync Ecosystem Thrives Amidst Market Downturn
Despite the broader crypto market experiencing a bearish October, the ZKSync ecosystem is bucking the trend with significant developments: - Continuous shipping of new projects and updates - Strong ecosystem growth, contrasting with general market sentiment - Multiple initiatives launched, represented by letters: R Z I X Q S T C C P G This 'Octobull' for ZKSync highlights the resilience and progress of zkRollup technology on Ethereum Layer 2, even in challenging market conditions. Stay tuned for more updates on ZKSync's ecosystem expansion and its impact on Ethereum scalability.
ZkSync Founder Discusses Scaling Solutions and FreeFi
Alex Gluchowski (@gluk64), founder of zkSync, recently spoke at @crecimientoar about blockchain scaling challenges and ZK technology as the ultimate solution. Key points covered: - ZkSync's product lineup: Lite, Era, and Elastic Chain - The importance of building practical dapps for real-world use - Introduction of FreeFi: An on-chain banking system integrating: - DeFi - Payments - Real-world assets (RWAs) - On-ramps - Last-mile integrations This comprehensive approach aims to address scaling issues while creating a user-friendly ecosystem for mainstream adoption. To learn more about zkSync's vision and FreeFi, check out the full discussion.