ZKSYNC和物質實驗室在官方X帳戶被黑客攻擊後遭受了另一種安全漏洞

Zksync和Matter Labs在5月13日官方X帳戶被黑客入侵後，遭受了另一種安全漏洞。

The X accounts of ZKsync and Matter Labs were hacked on May 13. The attackers posted false regulatory alerts and phishing links. The attack on ZKsync saw a nearly 5% drop in the token’s price.

ZKSYNC和物質實驗室的X帳戶於5月13日被黑客入侵。攻擊者發布了錯誤的監管警報和網絡釣魚鏈接。對Zksync的攻擊使令牌的價格下降了近5％。

The messages claimed that the platform was under investigation by the SEC and that the Treasury Department was preparing sanctions.

這些消息聲稱該平台正在由SEC調查，財政部正在準備製裁。

However, the news was false, and the post was quickly deleted by ZKsync, which recovered control of its profile.

但是，這個消息是錯誤的，該帖子很快被ZKSYNC刪除，該帖子恢復了對其個人資料的控制。

Shortly after, the hackers spread a fake airdrop with malicious links intended to empty the wallets of unsuspecting users.

不久之後，黑客散佈了一個帶有惡意鏈接的假氣電器，旨在清空毫無戒心的用戶的錢包。

According to Matter Labs, the unauthorized access likely occurred through delegated accounts, used to post on behalf of the main accounts but with limited permissions. After detecting the breach, the company disconnected those accounts and removed the fraudulent posts. An internal investigation is currently underway to determine how the incident occurred.

根據Matter Labs的說法，未經授權的訪問可能是通過授權帳戶發生的，用於代表主要帳戶發布但許可有限。發現違規行為後，該公司斷開了這些帳戶並刪除了欺詐性職位。目前正在進行內部調查，以確定事件的發生方式。

This incident at least marks the third time in less than a month that ZKsync's ecosystem has been targeted by hackers.

這一事件至少標誌著不到一個月的第三次ZKSYNC的生態系統是黑客的目標。

On April 15, a hacker exploited a flaw in the airdrop distribution contract and managed to mint 111 million unclaimed tokens, worth about $5 million at the time. On that occasion, an informal agreement was reached for the attacker to return 90% of the assets, keeping the rest as a bounty.

4月15日，一名黑客利用了Airdrop發行合同中的缺陷，並設法鑄造了1.11億個無人認領的令牌，當時價值約500萬美元。那時，達成了一項非正式協議，供襲擊者退還90％的資產，將其餘的賞金保留為賞金。

The series of incidents in such a short period raises doubts about ZKsync's security protocols. Although in both cases the users’ funds were not directly compromised, the consequences for reputation and trust are evident.

在如此短的時間內，一系列事件引起了人們對ZKSYNC的安全協議的懷疑。儘管在這兩種情況下，用戶的資金均未直接妥協，但對聲譽和信任的後果很明顯。

In the first quarter of 2025 alone, losses from hacks in the crypto ecosystem approached $2 billion, nearly matching the total losses of 2024.

僅在2025年的第一季度，加密生態系統中的黑客損失就接近了20億美元，幾乎與2024年的總損失相匹配。