The X account of the Ethereum layer 2 community ZKsync and its developer Matter Labs have been compromised early on Might 13, with hackers falsely claiming the community was being probed by US authorities, amongst different rip-off messages.
A ZKsync-related X account posted on Might 13, confirming the accounts for ZKsync and Matter Labs have been compromised, warning customers to not work together after the accounts shared hyperlinks to a faux airdrop in an obvious phishing rip-off.
The hacked ZKsync and Matter Labs then each posted a faux assertion claiming ZKsync was beneath investigation by the US Securities and Trade Fee and that the Treasury Division may impose sanctions on the platform.
Matter Labs communications head Lynnette Nolan confirmed to Cointelegraph that the now-deleted X publish “shouldn’t be legit” and each accounts are actually “absolutely again within the management of the group.”
“Shoutout to the zksync hackers. As an alternative of dropping a token and stealing a couple of dollars they determined to scare the dwelling shit out of onchain degens,” crypto startup g8keep co-founder Harrison Leggio, who goes by “Pop Punk,” posted to X.
The faux assertion was seemingly aimed toward crashing the value of the platform’s self-titled token, ZKsync (ZK), which has fallen round 2% within the final hour amid the X account breach, in accordance to CoinGecko.
The SEC has investigated crypto corporations previously, and plenty of of those corporations have chosen to publicly disclose once they’ve been investigated by the regulator.
The SEC has stopped a lot of its probes beneath the Trump administration, with Crypto.com, Immutable, OpenSea, and RobinHood Crypto, amongst others, confirming the company had ended investigations.
ZK is down 6.4% over the past day to commerce at round 7 cents, cooling from an almost 38.5% rally it’s loved over the previous week.
Associated: US prosecutors need 2 years for SEC X account hacker
Matter Labs’ Nolan stated the agency was wanting into how the X accounts have been breached, and believed it was through “compromised delegated accounts,” which permit customers restricted entry to an X account, permitting them to publish on its behalf.
Two hacks in as many months
It’s the second compromise of ZKsync-controlled platforms since April.
On April 15, an attacker breached the admin account of ZKsync’s airdrop distribution contract and used a perform to mint 111 million unclaimed ZK tokens, value roughly $5 million on the time.
The hack occurred amid the platform handing out 17.5% of ZK’s provide to ecosystem members.
The attacker later returned 90% of the stolen tokens, agreeing to maintain 10% as a bounty.
Journal: ZK-proofs are bringing good contracts to Bitcoin — BitcoinOS and Starknet
