LayerZeroは、脆弱な設定下で自社の検証者ネットワークに高額資産の保護を許可したという過失を認めた。この発表は、当初開発者の責任とされていたKelp DAOにおける2億9200万ドルのハッキング事件から数週間を経て行われた。同社は、中核となるプロトコルには影響がないと説明している。
LayerZeroは金曜遅く、高額転送のために分散型検証者ネットワークを「1 of 1」設定で運用することを許可したのが誤りであったと表明した。この設定は単一障害点となり、4月の攻撃で悪用された。同社は、今回の侵害について自社の内部RPCインフラへの攻撃に起因するものとし、同時に外部プロバイダーも分散型サービス拒否(DDoS)攻撃を受けていたと説明した。
AIによるレポート AIによって生成された画像
A federal case is unfolding over $71 million in frozen cryptocurrency following the Kelp DAO exploit, as Aave seeks to release the funds for DeFi recovery. Victims of decades-old North Korean terrorist acts have filed a restraining notice against Arbitrum DAO, claiming the 30,765 ETH as DPRK-linked property. The dispute pits recent hack victims against long-standing terrorism judgment holders.
Kelp DAO has accused LayerZero personnel of approving the 1-of-1 verifier setup blamed for a $292 million exploit on its rsETH bridge. The protocol plans to migrate from LayerZero's OFT standard to Chainlink's CCIP. The hack has been linked to North Korea's Lazarus Group.
AIによるレポート
A $292 million exploit on Kelp DAO has shaken decentralized finance (DeFi) lending markets, prompting industry insiders to call for stronger security measures. Despite the setback, experts view it as a temporary hurdle rather than a barrier to institutional adoption. Wall Street firms continue advancing into onchain finance amid the fallout.
OP Labs, the developer behind the Optimism Ethereum layer-2 network, has laid off 20 employees as part of a restructuring effort. CEO Jing Wang stated that the move aims to streamline operations and prioritize core activities, not due to financial issues. The company emphasized its strong financial position with years of runway ahead.
AIによるレポート
A crypto security firm used artificial intelligence to detect a high-severity bug in Nethermind, an Ethereum client used by nearly 40% of validators. The flaw, which could have disrupted network operations, was fixed before exploitation. This development highlights AI's growing role in cybersecurity amid recent concerns over AI-generated code vulnerabilities.
A federal court has affirmed an arbitration decision favoring DigitalOcean LLC in a dispute over a cryptocurrency theft. The ruling stems from a hack that led to a customer losing $6.87 million in Bitcoin stored on the company's cloud systems. The decision relies on terms of service provisions shared between the parties.