2025年5月13日，以太坊2層縮放解決方案zksync發生了嚴重的安全漏洞

2025年5月13日，在以太坊2層縮放解決方案zksync中發生了嚴重的安全漏洞。 ZKSYNC及其開發人員物質實驗室的官方X帳戶被黑客入侵

May 13th of May 2025 saw a major security breach in the Ethereum layer-2 scaling solution ZKsync. The official X accounts of ZKsync and its developer, Matter Labs, were hacked, leading to fake information about an investigation by the U.S. Securities and Exchange Commission (SEC).

2025年5月13日，在以太坊2層縮放解決方案zksync中看到了嚴重的安全漏洞。 ZKSYNC及其開發商物質實驗室的官方X帳戶被黑客入侵，導緻美國證券交易委員會（SEC）的偽造信息。

The incident unfolded in the early hours of the day as hackers gained control of the X accounts to post misleading remarks. A false report claimed that the SEC was investigating ZKsync and that the U.S. Department of the Treasury might be sanctioning it.

當黑客獲得X帳戶的控制權以發布誤導性言論時，該事件在一天的凌晨進行。一份虛假報告稱，SEC正在調查ZKSYNC，美國財政部可能正在製裁。

Coming very quickly after the post, the Developers team of ZKsync issued a warning on their official X account at 00:26 UTC. They notified the users of the breach and said that both accounts were not safe. The team recommended that the community desist from interacting with any post or links from the compromised accounts until they solved the problem. They assured the community they would provide an update after recovering the accounts.

帖子後很快，ZKSYNC的開發人員團隊在00:26 UTC上發出了官方X帳戶的警告。他們通知用戶違規行為，並說兩個帳戶都不安全。團隊建議社區不再與折衷帳戶的任何帖子或鏈接進行互動，直到解決問題為止。他們向社區保證，他們在恢復帳戶後將提供更新。

Hackers Target ZK Token Price

黑客目標ZK代幣價格

The fake rumor of an SEC investigation appeared to be a move to play with the market. According to data from CoinMarketCap, the price of the ZK token dropped by about 2% in an hour after the fraudulent posts began.

SEC調查的假謠言似乎是與市場一起玩的舉動。根據CoinMarketCap的數據，欺詐性職位開始後的一個小時內，ZK代幣的價格下降了約2％。

The hackers also included links to a fake airdrop in their posts, which investigators discovered to be a phishing scam designed to steal user information.

黑客還在其帖子中包含了指向偽造的空投的鏈接，調查人員發現這是旨在竊取用戶信息的網絡釣魚騙局。

This marks the second time in less than a month that ZKsync has been hit by a major security compromise. A hack of the network’s wallet in April 2025 led to the theft of ZK tokens worth a total of five million dollars for the company. The constant violations have raised concerns about the security measures adopted by the platform.

這標誌著ZKSYNC在不到一個月的時間內第二次受到重大安全妥協的打擊。 2025年4月，該網絡的錢包被盜竊，導致ZK代幣盜竊了該公司的價值五百萬美元。不斷的違規行為引起了人們對平台採取的安全措施的擔憂。

After some time had passed, the team from Matter Labs revealed that hackers most likely breached the X account through compromised delegated accounts. These accounts grant limited access to post on behalf of the main account, allowing the hackers to post without directly hacking the main account. The company is investigating the actual cause of the incident to ensure it does not happen again.

一段時間後，Matter Labs的團隊透露，黑客最有可能通過受損的委託帳戶違反了X帳戶。這些帳戶授予有限的代表主帳戶訪問發布，從而允許黑客發布而無需直接黑客入侵主帳戶。該公司正在調查事件的實際原因，以確保不會再次發生。

Community Response and Platform Challenges

社區反應和平台挑戰

The ZKsync community has been complaining about the frequent security issues. The platform, which leverages the use of the zero-knowledge proofs technique to improve the scalability of Ethereum, has faced criticism for its management of past events. The April breach, for example, caused a 19% decrease in the price of the ZK token, ultimately ending the day with a 5% loss.

ZKSYNC社區一直抱怨經常出現的安全問題。該平台利用零知識證明技術來提高以太坊的可擴展性，該平台因其對過去事件的管理而面臨批評。例如，四月違規行為導致ZK代幣的價格下降了19％，最終以5％的損失結束了一天。

The SEC has been known to investigate cryptocurrency platforms in the past, usually resulting in public disclosures by the affected firms. However, the claim posted by the hackers was completely fabricated without any evidence of an actual investigation. Similarly, the U.S. Treasury Department had no record of sanctioning ZKsync.

眾所周知，SEC過去會調查加密貨幣平台，通常導致受影響的公司公開披露。但是，黑客發布的索賠是完全製作的，沒有任何實際調查的證據。同樣，美國財政部也沒有製裁ZKSYNC的記錄。

The ZKsync team is still working to recover the compromised accounts. They have reiterated their interest in securing the users and urged the community to remain vigilant against phishing attacks and false announcements.

ZKSYNC團隊仍在努力恢復受損的帳戶。他們重申了他們對確保用戶的興趣，並敦促社區對網絡釣魚攻擊和虛假公告保持警惕。