Market Cap: $3.2495T 2.580%
Volume(24h): $110.7413B -18.530%
  • Market Cap: $3.2495T 2.580%
  • Volume(24h): $110.7413B -18.530%
  • Fear & Greed Index:
  • Market Cap: $3.2495T 2.580%
Cryptos
Topics
Cryptospedia
News
CryptosTopics
Videos
Top News
Cryptos
Topics
Cryptospedia
News
CryptosTopics
Videos
bitcoin
bitcoin

$104654.464793 USD

2.47%

ethereum
ethereum

$2482.196122 USD

1.96%

tether
tether

$1.000892 USD

0.06%

xrp
xrp

$2.172204 USD

3.01%

bnb
bnb

$645.665986 USD

1.55%

solana
solana

$148.547704 USD

1.62%

usd-coin
usd-coin

$0.999890 USD

0.00%

dogecoin
dogecoin

$0.181008 USD

5.22%

tron
tron

$0.278244 USD

0.72%

cardano
cardano

$0.658362 USD

4.58%

hyperliquid
hyperliquid

$33.402451 USD

-1.57%

sui
sui

$3.243792 USD

9.23%

chainlink
chainlink

$13.703476 USD

4.93%

avalanche
avalanche

$19.876159 USD

5.04%

unus-sed-leo
unus-sed-leo

$8.988912 USD

2.86%

Cryptocurrency News Articles

Liquid Staking Protocol Lido Avoids Major Security Incident After One of Its Oracle Keys Is Compromised

May 12, 2025 at 02:02 pm

Lido, Ethereum's largest liquid staking protocol, avoided a major security incident after one of its nine oracle keys was compromised

Liquid Staking Protocol Lido Avoids Major Security Incident After One of Its Oracle Keys Is Compromised

One of Lido’s nine oracle keys was compromised, in what appears to be a low-impact but serious breach involving validator operator Chorus One.

According to X posts from both Lido and Chorus One, the compromised key was tied to a hot wallet used for oracle reporting, leading to the theft of just 1.46 ETH ($4,200) in gas fees.

No user funds were affected, and no broader compromise was detected.

Lido's oracle system is a blockchain-based tool that supplies Ethereum consensus data to Lido’s smart contracts using a 5-of-9 quorum mechanism. This means that even if upto 4 keys are compromised, the system can continue operating.

According to Chorus One, contributors first detected the suspicious activity early Sunday after a low-balance triggered a closer look at the address.

This revealed unauthorized access to an oracle private key used by Chorus One that was originally created in 2021 and not secured to the same standards as newer keys, the firm said.

In response, Lido has launched an emergency DAO vote to rotate the compromised oracle key across three contracts: the Accounting Oracle, the Validators Exit Bus Oracle, and the CS Fee Oracle.

The new key has been generated using better security controls to avoid any repeat.

The hack comes as several other oracle operators were also experiencing unrelated node issues, including a minor Prysm bug introduced by Ethereum’s recent Pectra upgrade, briefly delaying oracle reports on May 10.

The compromised address (0x140B) is being replaced by a new secure address (0x285f), with the on-chain vote already approved and in its 48-hour objection period as of Asian morning hours Monday.

Disclaimer:info@kdj.com

The information provided is not trading advice. kdj.com does not assume any responsibility for any investments made based on the information provided in this article. Cryptocurrencies are highly volatile and it is highly recommended that you invest with caution after thorough research!

If you believe that the content used on this website infringes your copyright, please contact us immediately (info@kdj.com) and we will delete it promptly.

Other articles published on Jun 07, 2025