液体占用协议Lido避免了一次Oracle键后的重大安全事件

以太坊最大的液体饲养协议丽多（Lido

One of Lido’s nine oracle keys was compromised, in what appears to be a low-impact but serious breach involving validator operator Chorus One.

Lido的九个Oracle钥匙之一被妥协了，这似乎是一种低影响但严重的违规行为，涉及验证器操作员合唱。

According to X posts from both Lido and Chorus One, the compromised key was tied to a hot wallet used for oracle reporting, leading to the theft of just 1.46 ETH ($4,200) in gas fees.

根据Lido和Chorus One的X帖子，被折衷的钥匙与用于Oracle报告的热钱包有关，导致盗窃1.46 ETH（4,200美元）的汽油费。

No user funds were affected, and no broader compromise was detected.

没有影响用户资金，也没有检测到更广泛的妥协。

Lido's oracle system is a blockchain-based tool that supplies Ethereum consensus data to Lido’s smart contracts using a 5-of-9 quorum mechanism. This means that even if upto 4 keys are compromised, the system can continue operating.

Lido的Oracle System是一种基于区块链的工具，可使用9个法定人数中的5中的5中的5中的智能合约提供以太坊共识数据。这意味着即使最多可损害了4个键，系统也可以继续运行。

According to Chorus One, contributors first detected the suspicious activity early Sunday after a low-balance triggered a closer look at the address.

根据Chorus One的说法，贡献者首先在周日早些时候发现了可疑活动，此前较低的平衡引发了仔细观察。

This revealed unauthorized access to an oracle private key used by Chorus One that was originally created in 2021 and not secured to the same standards as newer keys, the firm said.

该公司表示，这揭示了未经授权的合唱所使用的Oracle私钥的访问权限，该钥匙最初是在2021年创建的，并且与新钥匙的标准相同。

In response, Lido has launched an emergency DAO vote to rotate the compromised oracle key across three contracts: the Accounting Oracle, the Validators Exit Bus Oracle, and the CS Fee Oracle.

作为回应，利多（Lido）发起了紧急DAO投票，以跨三个合同旋转折衷的Oracle钥匙：会计Oracle，验证者退出Bus Oracle和CS Fee Oracle。

The new key has been generated using better security controls to avoid any repeat.

新键是使用更好的安全控件生成的，以避免重复进行任何重复。

The hack comes as several other oracle operators were also experiencing unrelated node issues, including a minor Prysm bug introduced by Ethereum’s recent Pectra upgrade, briefly delaying oracle reports on May 10.

该技巧是因为其他几家Oracle运营商还遇到了无关的节点问题，其中包括以太坊最近升级的次要prysm错误，并于5月10日短暂延迟了Oracle报告。

The compromised address (0x140B) is being replaced by a new secure address (0x285f), with the on-chain vote already approved and in its 48-hour objection period as of Asian morning hours Monday.

被折衷的地址（0x140b）被新的安全地址（0x285F）取代，截至周一，在亚洲早晨的48小时反对期内，链票的投票已得到批准。