PANews reported on April 15 that according to the ZKsync official update notice, the investigation showed that the administrator address of the airdrop contract (0x8428... 587D) was breached, and the attacker called the sweepUnclaimed() function to illegally mint about 111 million ZK tokens from three airdrop contracts, accounting for about 0.45% of the total supply. The event is limited to the airdrop distribution contract, and the ZKsync protocol and its token contract, governance contract, and authorized minter are not affected. Most of the funds are still in the attacker's address, and the team is coordinating with the SEAL organization and exchanges to track down and encourage the attacker to return the funds.
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
ZKsync: Attackers illegally minted about 111 million ZK Tokens from three airdrop contracts, accounting for about 0.45% of the total supply.
PANews reported on April 15 that according to the ZKsync official update notice, the investigation showed that the administrator address of the airdrop contract (0x8428... 587D) was breached, and the attacker called the sweepUnclaimed() function to illegally mint about 111 million ZK tokens from three airdrop contracts, accounting for about 0.45% of the total supply. The event is limited to the airdrop distribution contract, and the ZKsync protocol and its token contract, governance contract, and authorized minter are not affected. Most of the funds are still in the attacker's address, and the team is coordinating with the SEAL organization and exchanges to track down and encourage the attacker to return the funds.