The ZKsync Affiliation has efficiently recovered $5 million value of stolen tokens following a safety breach on April 15 involving its airdrop distribution contract.
The hacker behind the exploit agreed to a ten% bounty in change for returning 90% of the stolen belongings, transferring almost $5.7 million again to the ZKsync Safety Council throughout three transactions on April 23.
In a press release posted on X, the ZKsync Affiliation confirmed the cooperation, noting that the funds had been returned inside the designated 72-hour secure harbor window.
Matter Labs Confirms No Consumer Funds Had been Affected in ZKsync Safety Incident
Matter Labs, the developer of the ZKsync protocol, additionally shared the replace, reassuring customers that no private funds had been compromised through the incident.
Blockchain knowledge reveals the hacker transferred $2.47 million in ZK tokens and $1.83 million in Ether (ETH) on the ZKsync Period community, together with a further 776 ETH—valued at almost $1.4 million—to the Safety Council’s Ethereum deal with. The transfers had been accomplished in underneath quarter-hour.
The breach occurred when the attacker gained entry to ZKsync’s admin account and exploited the airdrop contract’s sweepUnclaimed() operate, minting 111 million unclaimed ZK tokens valued at round $5 million on the time.
The exploit occurred throughout ZKsync’s ongoing airdrop of 17.5% of its token provide to ecosystem individuals.
We’re happy to share that the hacker has cooperated and returned the funds inside the secure harbor deadline. As said within the authentic Safety Council message, the case is now thought of resolved.
The belongings are actually in custody of the Safety Council, and the choice on what… https://t.co/X0oejun9Tx— ZK Nation (@TheZKNation) April 23, 2025
Curiously, the recovered quantity surpassed the unique stolen worth as a result of an increase in token costs for the reason that hack.
In response to CoinGecko, ZK tokens have gained 16.6% and ETH has risen 8.8% since April 15.
Regardless of the constructive decision, ZK’s market response was muted, with the token down 0.2% over the previous 24 hours.
The ZKsync Affiliation introduced plans to launch an in depth report on the incident.
ZKsync Period, an Ethereum Layer 2 community leveraging zero-knowledge rollups, at present holds almost $59 million in whole worth locked (TVL) and over $2 billion in tokenized real-world belongings, based mostly on knowledge from DeFiLlama and RWA.xyz.
Crypto Misplaced $1.6 Billion to Hacks in Q1
Within the first three months of 2025, the crypto ecosystem misplaced a whopping $1,635,933,800 throughout 39 incidents, based on the blockchain safety platform Immunefi.
The report claimed, “Q1 2025 marks the worst quarter for hacks within the historical past of the crypto ecosystem.”
Most of that was the results of solely two hacks of two centralized exchanges. Phemex suffered a $69.1 million loss in January, whereas Bybit misplaced $1.46 billion in February.
Subsequently, the whole variety of losses within the first quarter marks a 4.7x enhance in comparison with Q1 2024. At the moment, hackers and fraudsters stole $348,251,217.
Notably, consultants assume that the notorious North Korean Lazarus Group is behind the 2 largest assaults. They stole $1.52 billion, or 94% of whole losses.
The publish ZKsync Recovers $5M in Stolen Tokens After Hacker Accepts Bounty appeared first on Cryptonews.