The X account of the Ethereum layer 2 community ZKsync and its developer Matter Labs have been compromised early on Could 13, with hackers falsely claiming the community was being probed by US authorities, amongst different rip-off messages.
A ZKsync-related X account posted on Could 13, confirming the accounts for ZKsync and Matter Labs have been compromised, warning customers to not work together after the accounts shared hyperlinks to a faux airdrop in an obvious phishing rip-off.
The hacked ZKsync and Matter Labs then each posted a faux assertion claiming ZKsync was underneath investigation by the US Securities and Change Fee and that the Treasury Division may impose sanctions on the platform.
Matter Labs communications head Lynnette Nolan confirmed to Cointelegraph that the now-deleted X publish “isn’t legit” and each accounts are actually “totally again within the management of the group.”
“Shoutout to the zksync hackers. As an alternative of dropping a token and stealing a couple of dollars they determined to scare the residing shit out of onchain degens,” crypto startup g8keep co-founder Harrison Leggio, who goes by “Pop Punk,” posted to X.
The faux assertion was seemingly aimed toward crashing the worth of the platform’s self-titled token, ZKsync (ZK), which has fallen round 2% within the final hour amid the X account breach, in keeping with CoinGecko.
The SEC has investigated crypto corporations up to now, and plenty of of those companies have chosen to publicly disclose after they’ve been investigated by the regulator.
The SEC has stopped a lot of its probes underneath the Trump administration, with Crypto.com, Immutable, OpenSea and RobinHood Crypto, amongst others, confirming the company had ended investigations.
ZK is down 6.4% during the last day to commerce at round 7 cents, cooling from a virtually 38.5% rally it’s loved over the previous week.
Associated: US prosecutors need 2 years for SEC X account hacker
Matter Labs’ Nolan stated the agency was wanting into how the X accounts have been breached, and believed it was by way of “compromised delegated accounts,” which permit customers restricted entry to an X account, permitting them to publish on its behalf.
Two hacks in as many months
It’s the second compromise of ZKsync-controlled platforms since April.
On April 15, an attacker breached the admin account of ZKsync’s airdrop distribution contract and used a operate to mint 111 million unclaimed ZK tokens, price roughly $5 million on the time.
The hack occurred amid the platform handing out 17.5% of ZK’s provide to ecosystem contributors.
The attacker later returned 90% of the stolen tokens, agreeing to maintain 10% as a bounty.
Journal: ZK-proofs are bringing sensible contracts to Bitcoin — BitcoinOS and Starknet
