Hackers targeting the Ethereum scaling protocol ZKsync managed to steal approximately $5 million in native ZK tokens due to a compromised administrative account that allowed them to control unclaimed tokens from a recent airdrop. Following the incident, the value of the ZK token dropped to nearly $0.04 but later recovered slightly to about $0.05. ZKsync stated that user funds remain secure and have never been at risk, emphasizing that the incident was limited to the specific contract involved in the airdrop. The security team confirmed that the hack involved the minting of new tokens by exploiting the technology related to the airdrop, which is common in the crypto space as new projects reward investors with tokens. An investigation is underway to assess the full extent of the breach, while emphasizing that the protocol's core and user funds are safeguarded. Security breaches are not uncommon in the fast-evolving world of decentralized applications, with incidents resulting in substantial financial losses throughout the crypto industry over the past years.

Source 🔗