{"id":12780,"date":"2025-02-12T20:17:37","date_gmt":"2025-02-12T20:17:37","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=12780"},"modified":"2025-02-12T20:17:37","modified_gmt":"2025-02-12T20:17:37","slug":"zklend-exploited-for-4-9m-in-eth-team-appeals-to-hacker-with-10-offer","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=12780","title":{"rendered":"zkLend Exploited for $4.9M in ETH, Team Appeals to Hacker with 10% Offer"},"content":{"rendered":"
\n

zkLend, a decentralized finance lending protocol on Starknet, has suffered a major security breach. As a result, it lost approximately 3,700 ETH, worth around $4.9 million.<\/p>\n

The exploit has forced the platform to pause withdrawals while investigations continue.<\/p>\n

Response to the Exploit<\/h2>\n

zkLend confirmed the incident in a series of X posts<\/a> on February 11, stating that millions worth of cryptocurrency had been drained from its smart contracts.<\/p>\n

\u201cWe are aware of the ongoing security incident on zkLend. The team is now investigating and will provide an update when possible,\u201d the protocol stated. Hours later, they advised users to refrain from depositing or repaying funds while they worked to determine the root cause. They also halted all withdrawals to prevent further losses.<\/p>\n

Following the attack, zkLend sought the services of several organizations, including StarkWare, ZeroShadow, Binance Security, and Hypernative Labs, to help track the hacker and recover the stolen funds. It also promised to share a more detailed analysis as soon as a post-mortem was completed.<\/p>\n

The exploit affected several DeFi strategies linked to zkLend, including STRKFarm\u2019s STRK, USDC, and ETH Sensei strategies, putting withdrawals on ice until the situation gets resolved.<\/p>\n

According to blockchain security firm QuillAudits, the perpetrator, identified by the address 0x64\u20269109, first targeted a specific contract, 0x04\u20263b26, before siphoning the funds. They then moved the stolen assets to Ethereum, funneling it through the Railgun crypto mixer, a privacy-focused tool often used to obscure transaction trails.<\/p>\n

On-chain data shared<\/a> by the security platform showed several transactions leading to laundering activity, with 706 ETH, valued at about $1.8 million, already sent through the mixer.<\/p>\n

Whitehat Bounty Offer<\/h2>\n

In a last-ditch effort to recover the funds, zkLend issued a direct message<\/a> to the hacker, offering a 10% whitehat bounty. This would mean that the attacker would keep nearly 400 ETH worth more than one million dollars if the remaining 3,300 ETH were returned by 00:00 UTC on Valentine\u2019s Day. The team also stressed that the offer is legally binding and releases the exploiter \u201cfrom any and all liability\u201d regarding the heist.<\/p>\n

It isn\u2019t the first time protocols on the wrong end of exploits have tried negotiating with bad actors to have funds returned. In March last year, WOOFI lost<\/a> $8.5 million in a flash loan attack, and subsequently offered a percentage of the loot as a whitehat bounty.<\/p>\n

Similarly, almost half a year before that,\u00a0North Korean hackers stole more than $70 million from the CoinEx crypto exchange\u2019s hot wallets, leading the platform to\u00a0offer<\/a> them what it termed\u00a0a \u201cgenerous bug bounty.\u201d<\/p>\n

Sadly, in both cases, no funds were ever returned despite the bounty pleas.<\/p>\n

The post zkLend Exploited for $4.9M in ETH, Team Appeals to Hacker with 10% Offer<\/a> appeared first on CryptoPotato<\/a>.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

zkLend, a decentralized finance lending protocol on Starknet, has suffered a major security breach. As a result, it lost approximately 3,700 ETH, worth around $4.9 million. The exploit has forced the platform to pause withdrawals while investigations continue. Response to the Exploit zkLend confirmed the incident in a series of X posts on February 11, […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":0,"footnotes":""},"categories":[2],"tags":[3,4,5],"class_list":["post-12780","post","type-post","status-publish","format-standard","hentry","category-news","tag-crypto","tag-doge","tag-news"],"_links":{"self":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/12780","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=12780"}],"version-history":[{"count":0,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/12780\/revisions"}],"wp:attachment":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=12780"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=12780"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=12780"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}