PANews reported on February 12 that in response to the attack on zkLend where more than $9 million was stolen, SlowMist released an analysis on the X platform saying that the core reason for the attack was the safeMath library used in the market contract. When performing division calculations, direct division was used, resulting in a rounding down vulnerability when calculating the actual number of zTokens that need to be destroyed during withdrawal operations. Attackers may use this vulnerability to illegally obtain profits. SlowMist reminds users to pay close attention to the status of their assets on zkLend and temporarily stop recharging actions related to zkLend to avoid possible losses.
SlowMist: The core reason for the zkLend attack is the safeMath library used in the market contract
- 2025-05-08
OpenAI appoints new CEO of application business, Altman will focus on superintelligence research and security
- 2025-05-08
The final battle of the 10-year evolution of account abstraction: looking at the past and the future through EIP-7702
- 2025-05-08
OKX Wallet has taken the lead in supporting Ethereum’s latest account abstraction standard EIP-7702
- 2025-05-08
The U.S. Treasury Department plans to hold a closed-door roundtable meeting with the crypto industry next week
- 2025-05-07
ZachXBT: Over $45 million stolen from Coinbase users last week via social engineering scam
- 2025-05-07
Safeheron Launches Open Source Intel SGX TEE Framework for Web3 Security