This week, two decentralized finance platforms, ZKsync and KiloEx, fell victim to significant cyber attacks, leading to losses exceeding $12 million.
Details of the KiloEx Attack
The decentralized exchange (DEX) KiloEx reported a theft of $7.5 million due to a price oracle vulnerability. The attacker manipulated the price data, leading to substantial losses. As a response, KiloEx offered a $750,000 white hat bounty and issued the hacker an ultimatum: return 90% of the stolen funds or face legal consequences.
ZKsync and Token Leak
The ZKsync cryptocurrency platform confirmed that an unauthorized actor exploited a compromised admin account to mint tokens worth $5 million. While no user funds were affected, the incident raised serious questions regarding the platform's security. Developers are already working to patch the identified vulnerabilities.
Rising Losses in DeFi
According to analytics platforms, the number of hacking incidents in the crypto industry has drastically increased in 2025, with total losses around $2 billion in the first quarter. This highlights the need for improved audits and protection of admin accounts, especially in light of the growing threats.
The serious incidents involving KiloEx and ZKsync underline the importance of security in decentralized finance. Both platforms are taking steps to recover and enhance protection, but the future of these projects largely depends on how they respond to the attacks.
