On the night of May 13, the official accounts of ZKsync and Matter Labs on X (formerly "Twitter") were compromised. The attackers published a fake statement claiming that an investigation by the U.S. Securities and Exchange Commission (SEC) was allegedly open against the platform and that the Treasury might impose sanctions.
At the same time, the hackers sent links to a fake airdrop, urging users to interact with a malicious website. Matter Labs quickly regained control over the accounts and confirmed that the message about the SEC investigation has no relation to reality.
The attack led to a short-term decline in the price of the ZK token (ZKsync) by about 2% within an hour after the publication. Over 24 hours, the token decreased in price by 6.4%, retracting from a seven-day increase of nearly 38.5%.
A Matter Labs representative stated that the hack likely occurred through "delegated" accounts with limited access, which allowed the attackers to post on behalf of the team.
This is already the second incident of ZKsync compromise in the last two months: on April 15, a hacker exploited administrative access to the airdrop contract and temporarily minted 111 million ZK tokens.
