- ZKsync X accounts hacked, posting false SEC probe claims.
- Hackers aimed to crash the ZK token price with fake news.
On May 13th of May 2025, there was a major security breach that occurred in the Ethereum layer-2 scaling solution ZKsync. The official X accounts of ZKsync and its developer, Matter Labs, were hacked, and this resulted in fake information about an investigation by the U.S. Securities and Exchange Commission (SEC).
The incident started at the early hours of the day, and the hackers managed to take control of the accounts and post misleading remarks. A false report claimed that the SEC was investigating ZKsync and that the U.S. might punish it. Department of the Treasury.
The Developers team of ZKsync was very fast to come up with a warning on their official X account at 00:26 UTC. They informed the users of the breach and said that both accounts were not safe. The team recommended that the community desist from interacting with any post or links from the compromised accounts until they solved the problem. They assured the community they would provide an update after recovering the accounts.
Hackers Target ZK Token Price
The fake rumor of an SEC investigation seemed to be a calculated move to play with the market. Based on the data provided by CoinMarketCap, the price of the ZK token fell by about 2% in an hour after the fraudulent posts. The hackers also posted some links to a fake airdrop, and investigators discovered it to be a phishing scam meant to steal user information.
In a span of less than a month, this is the second instance of a security compromise that has occurred in relation to ZKsync. A hack of the network’s wallet occurred in April 2025, which resulted in the theft of ZK tokens worth a total of five million dollars for the company. The constant violations have heightened worries on the security mechanism adopted by the platform.
After some time had passed, the team from Matter Labs revealed that hackers most likely breached the X account by using compromised delegated accounts. These accounts allow limited access to post on behalf of the main account. The company is currently carrying out investigations on the actual cause of the incident so as to ensure that it does not recur in future.
Community Response and Platform Challenges
The ZKsync community complained about the frequent security concerns. The platform that leverages the use of the zero-knowledge proofs technique to improve the scalability of Ethereum has been criticized for its management of past events. The April breach, for example, caused a 19% decrease in the price of the ZK token, ending the day on a 5% loss.
The SEC has in the past investigated cryptocurrency platforms, and most of the time resulted in public disclosures by the affected firms. The claim posted by the hackers was, however, totally fabricated with no evidence of any real investigation. The Treasury Department of the United States also did not have any evidence of sanctioning ZKsync.
The ZKsync team is still working on the compromised accounts’ recovery. They have restated their interest in securing the users and encouraged the community to stay alert against phishing attacks and false announcements.
