ZkLend has suffered a significant security breach, losing approximately $4.9 million in an exploit on the Starknet network. The incident occurred on February 12, 2025, as reported by blockchain security firm Cyvers. Stolen funds were reportedly bridged to Ethereum and laundered through Railgun, but due to protocol policies, the funds were returned to their original address by Railgun. In response, zkLend offered the hacker a 10% bounty of the stolen funds, equivalent to around 3,300 ETH, if the remaining funds are returned by February 14. This incident marks a troubling resurgence of crypto exploits following a decrease in January, where over $73 million was stolen across various incidents. Security experts express concerns over the potential for another year dominated by high-profile hacks, given that 2024 saw a substantial increase in hacking activities, with $1.69 billion lost in crypto across 165 incidents.

Source 🔗