{"id":23489,"date":"2025-04-24T05:01:34","date_gmt":"2025-04-24T05:01:34","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=23489"},"modified":"2025-04-24T05:01:34","modified_gmt":"2025-04-24T05:01:34","slug":"zksync-recovers-5m-of-stolen-tokens-after-hacker-accepts-bounty-offer","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=23489","title":{"rendered":"ZKsync recovers $5M of stolen tokens after hacker accepts bounty offer"},"content":{"rendered":"
\n

<\/p>\n<\/p>\n

\"ZKsync<\/p>\n

The ZKsync Association has confirmed the recovery of $5 million worth of stolen tokens from an April 15 ZKsync security incident involving its airdrop distribution contract.<\/p>\n

The hacker agreed to accept a 10% bounty and return 90% of the remaining stolen tokens, transferring the ZKsync Security Council almost $5.7 million across three transfers on April 23.<\/p>\n

\u201cWe\u2019re pleased to share that the hacker has cooperated and returned the funds within the safe harbor deadline,\u201d ZKsync Association posted<\/a> to X on April 23, which was later reposted<\/a> by ZKsync\u2019s X account.<\/p>\n

Matter Labs, the company behind the ZKsync protocol, also reposted<\/a> the news shared on X.<\/p>\n

The ZKsync X account previously confirmed that no user funds were compromised.<\/a><\/p>\n

\"ZKsync
Source: <\/em>ZKsync Association<\/em><\/a>
<\/figcaption><\/figure>\n

The hacker sent<\/a> two transfers on the ZKsync Era blockchain, consisting of $2.47 million worth of ZKsync (ZK<\/a>) tokens and $1.83 million worth of Ether (ETH<\/a>) to the ZKsync Security Council\u2019s ZKsync Era address.<\/p>\n

Another 776 ETH worth nearly $1.4 million was also sent to their security council\u2019s Ethereum address, Etherscan data<\/a> shows.<\/p>\n

The first transfer was made on April 23 at 2:39:57 pm UTC on and the last transfer was made roughly 13 minutes later \u2014 all within the 72-hour window that ZK Sync had initially set.<\/p>\n

ZKsync Association said the company would publish a final report revealing more details from the security incident.<\/p>\n

How the hack happened<\/h2>\n

The hacker breached ZKsync\u2019s admin account,<\/a> allowing them to exploit the airdrop distribution contract’s sweepUnclaimed() function to mint 111 million unclaimed ZK tokens, worth approximately $5 million at the time of the April 15 attack.<\/p>\n

The hack occurred while ZKsync was in the process of airdropping<\/a> 17.5% of ZK\u2019s token supply to ecosystem participants.<\/p>\n

The recovered amount \u2014 almost $5.7 million \u2014 exceeded the $5 million originally stolen due to a rise in the market value of the stolen tokens, with ZK and ETH increasing 16.6% and 8.8% respectively since the April 15 attack, according<\/a> to CoinGecko data.<\/p>\n

Despite the asset recovery, the ZK token failed to rise substantially on the news and is currently down 0.2% over the last 24 hours.<\/p>\n

ZKsync Era<\/a> is an Ethereum layer 2<\/a> solution that uses zero-knowledge rollups to batch and process transactions offchain. It has nearly $59 million in total value locked on its chain and has over $2 billion in real-world assets onchain, according<\/a> to DefiLlama and RWA.xyz<\/a>.<\/p>\n

Magazine: <\/strong><\/em>Ethereum maxis should become \u2018assholes\u2019 to win TradFi tokenization race<\/strong><\/em><\/a><\/p>\n