By now, you've probably heard that yet another attacker managed to hack the largest protocol zkLend, extracting 3.300 ETH, worth $5 million.
The decentralized lending protocol zkLend, which is based on starknet, suffered a $9,5 million breach on February 12, according to reports from blockchain security firm Cyvers.
Currently, the team behind the protocol is attempting to negotiate with the hacker, offering a 10% reward for the return of the stolen 3.300 Ethereum.
But how do hackers manage to penetrate Tier-1 cryptographic platforms that are considered fully secure? What were the steps taken by the attacker and have the wallets from which the money was stolen been identified? What actions has the zkLend and what is he doing to recover the funds?
Let's try to track down the hacker, analyze the method he used step by step, and understand how the zkLend manages the security of its data and its users.
Table of Contents
Hacker embezzled 3.300 ETH from zkLend
In an attempt to come to terms with the invader, the zkLend proposed his return 10% of stolen funds until 00:00 UTC on February 14, 2025If there is no response, the platform team is committed to making every effort to identify the perpetrator.
At the time of our analysis, 1.801 ETH of the hacker's funds were in the process of being transferred between networks L2 and L1.
Later, the network status was updated and the money was added to the balance. alleged perpetrator.
In total, four addresses were involved in the attack.
- 0x645c77833833A6654F7EdaA977eBEaBc680a9109
- 0xCf677c7520E02acA89BC70431eAC891e94273E8a
- 0x0B7D061D91018AaB823A755020e625FfE8B93074
- 0xcd1c290198E12c4c1809271e683572FBF977Bb63
In an attempt to contact the attacker, a user shared a wallet address where the stolen funds could be returned. However, so far, no transfer has been made by the perpetrator.
How to spot a cryptocurrency hacker
Although the blockchain considered an anonymous and decentralized environment, each transaction leaves a digital footprint.
The hacker who carried out the attack on zkLend it appears he had previously used his wallet to receive money through Binance, in the network Base.
However, the amount transferred is small, suggesting that he may not have completed the process. KYC (Know Your Customer), making it difficult to fully identify.
The zkLend developers, in collaboration with leading blockchain security companies, such as StarkWare Ltd, Starknet Foundation, zeroshadow.io (formerly Chainalysis Incident Response), Binance Security Team and Hypernative Labs, are investigating the incident. At this time, track the route of stolen funds and examine the technical gaps that led to the breach.
The developers of the zkLend protocol promised users full transparency throughout the investigation. They promised to publish a detailed report once the investigation is complete. zkLend assured that user trust remains the platform’s top priority and that they will do everything possible to quickly resolve the problematic situation.
What is ZkLend?
The ZkLend it is a lending protocol which was created 2022, based on Layer 2 network starknet of Ethereum.
According to its development team, the ZkLend aims to offer scaling solutions and financial products that meet the needs of users. To achieve this, the platform provides:
- Easy and fast lending options.
- An expandable system with high speeds and low transaction costs.
LIABILITY DISCLAIMER:
Cryptocurrency trading is VERY risky. Make sure you understand these risks if you are a beginner. The Information in the post is my OPINION and not financial advice. You are responsible for what you do with your money.
Affiliate Disclaimer:
The above links to the services mentioned may be affiliate links. If you use the service through them then you help the BitsounisProject to continue to exist, at no extra cost to you.
Follow it Bitsounisproject.com on Google News to be the first to learn the latest news about Cryptocurrencies, Shares and new projects. Follow us on, Twitter, and TikTok.
