In February 2025, a hacker exploited zkLend, a decentralized lending protocol built on the Starknet blockchain He drained 2,930 ETH, roughly $9.5 million, through a smart contract vulnerability After pulling it off, he tried to move the funds through Tornado Cash to hide the trail But while doing that, he clicked a phishing link that looked like the real site The fake page drained his wallet instantly Just like that, every single $ETH he stole was gone The whole exploit, everything he worked for, wiped out in one mistake Then it got even stranger He sent an on-chain message to zkLend and the victims asking for help recovering the funds Completely ignoring the fact that he had just confessed on a permanent public ledger In the end, someone capable of breaking a DeFi protocol got caught by a basic phishing trap He walked away with nothing And the blockchain kept the full story forever
Share
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.