液體佔用協議Lido避免了一次Oracle鍵後的重大安全事件

以太坊最大的液體飼養協議麗多（Lido

One of Lido’s nine oracle keys was compromised, in what appears to be a low-impact but serious breach involving validator operator Chorus One.

Lido的九個Oracle鑰匙之一被妥協了，這似乎是一種低影響但嚴重的違規行為，涉及驗證器操作員合唱。

According to X posts from both Lido and Chorus One, the compromised key was tied to a hot wallet used for oracle reporting, leading to the theft of just 1.46 ETH ($4,200) in gas fees.

根據Lido和Chorus One的X帖子，被折衷的鑰匙與用於Oracle報告的熱錢包有關，導致盜竊1.46 ETH（4,200美元）的汽油費。

No user funds were affected, and no broader compromise was detected.

沒有影響用戶資金，也沒有檢測到更廣泛的妥協。

Lido's oracle system is a blockchain-based tool that supplies Ethereum consensus data to Lido’s smart contracts using a 5-of-9 quorum mechanism. This means that even if upto 4 keys are compromised, the system can continue operating.

Lido的Oracle System是一種基於區塊鏈的工具，可使用9個法定人數中的5中的5中的5中的智能合約提供以太坊共識數據。這意味著即使最多可損害了4個鍵，系統也可以繼續運行。

According to Chorus One, contributors first detected the suspicious activity early Sunday after a low-balance triggered a closer look at the address.

根據Chorus One的說法，貢獻者首先在周日早些時候發現了可疑活動，此前較低的平衡引發了仔細觀察。

This revealed unauthorized access to an oracle private key used by Chorus One that was originally created in 2021 and not secured to the same standards as newer keys, the firm said.

該公司表示，這揭示了未經授權的合唱所使用的Oracle私鑰的訪問權限，該鑰匙最初是在2021年創建的，並且與新鑰匙的標準相同。

In response, Lido has launched an emergency DAO vote to rotate the compromised oracle key across three contracts: the Accounting Oracle, the Validators Exit Bus Oracle, and the CS Fee Oracle.

作為回應，利多（Lido）發起了緊急DAO投票，以跨三個合同旋轉折衷的Oracle鑰匙：會計Oracle，驗證者退出Bus Oracle和CS Fee Oracle。

The new key has been generated using better security controls to avoid any repeat.

新鍵是使用更好的安全控件生成的，以避免重複進行任何重複。

The hack comes as several other oracle operators were also experiencing unrelated node issues, including a minor Prysm bug introduced by Ethereum’s recent Pectra upgrade, briefly delaying oracle reports on May 10.

該技巧是因為其他幾家Oracle運營商還遇到了無關的節點問題，其中包括以太坊最近升級的次要prysm錯誤，並於5月10日短暫延遲了Oracle報告。

The compromised address (0x140B) is being replaced by a new secure address (0x285f), with the on-chain vote already approved and in its 48-hour objection period as of Asian morning hours Monday.

被折衷的地址（0x140b）被新的安全地址（0x285F）取代，截至週一，在亞洲早晨的48小時反對期內，鏈票的投票已得到批准。