zkSync Era-based lending protocol EraLend announced it has experienced a security incident on its platform today. The threat has been contained, and all the borrowing operations have been suspended. According to CertiK, EraLend was exploited in a read only reentrancy attack, with a loss of around $3.4 million.
EraLend advised users not to deposit $USDC, and said it was working with partners and cybersecurity firms to address the issue. zkSync Era-based DEX SyncSwap said that only $USDC deposits on EraLend were affected by the incident, while all other assets remain secure and unaffected, including SyncSwap LP supplied on EraLend. However, SyncSwap advised users to withdraw their supplied LP on EraLend.
TokenInsight is dedicated to covering the most important and cutting-edge trends in the world of crypto. If you have information to share with us, please feel free to contact our email news@tokeninsight.com. Your trust will be well respected.
DeFi
Security Incidents
zkSync Era
Lending