Hacker Returns 90% of $5 Million Stolen from ZKSync

Coin WorldThursday, Apr 24, 2025 4:16 am ET
1min read

ZKSync, a layer-2 blockchain protocol, recently faced a significant security breach when an admin wallet was compromised, resulting in the theft of $5 million worth of unclaimed tokens from the ZKSync airdrop. The incident, which occurred last week, was swiftly addressed by the protocol's team, who worked diligently to resolve the issue.

The hacker, in a surprising turn of events, returned the stolen tokens after accepting a 10% bounty. This decision was made within the "safe harbor" deadline, a grace period commonly offered in security incidents to encourage the return of stolen funds without legal repercussions. The cooperation between the hacker and the ZKSync team was crucial in resolving the case, as it allowed for the swift recovery of the stolen assets.

The returned tokens are now under the custody of the ZKSync Security Council. A governance process will be initiated to determine the appropriate course of action regarding the tokens. Additionally, a final investigation report is being prepared and will be published once completed. This report will provide a comprehensive overview of the incident, the steps taken to resolve it, and the measures being implemented to prevent similar occurrences in the future.

The resolution of this incident highlights the importance of cooperation and swift action in addressing security breaches within the blockchain ecosystem. The ZKSync team's proactive approach and the hacker's decision to return the stolen funds demonstrate a commitment to maintaining the integrity and security of the protocol. As the blockchain industry continues to evolve, such incidents serve as valuable lessons in the importance of robust security measures and effective incident response strategies.