The post Ethereum founder responds to zkLend exploit, highlights Railgun’s privacy mechanism appeared on BitcoinEthereumNews.com.

Ethereum co-founder Vitalik Buterin has commended privacy protocol Railgun for successfully preventing an attacker from laundering stolen funds. His response sheds light on Railgun, a privacy pool mechanism that seeks to allow financial privacy while implementing measures to curb rampant fraud. On Feb. 12, an attacker exploited a rounding precision issue at zkLend, which is a money-market protocol in Starknet, stolen amounting to 3,600 ETH, equivalent to $9.5m at that time. The hacker increased the “lending_accumulator” by continuously depositing and then withdrawing wstETH and then transferring the assets to Ethereum. Further, when transferring the stolen amount to a privacy-focused protocol, Railgun, which uses zero-knowledge proof, the attacker was unable to manage the assets. The Private Proofs of Innocence function in Railgun also screened out illicit funds from getting into the privacy pool. The stolen assets are still in the hacker’s wallet, which has been marked by blockchain scanners. In a post on Thursday, Buterin addressed Railgun’s response, stating that it is one of the best demonstrations of privacy pools working as intended. He also pointed out that the system did not allow the execution of unlawful operations without leading to surveillance or backdoors. Privacy pools as a compliance solution The incident illustrates the current concern over the application of regulation to privacy-enhancing technology based on blockchain. Recently, there has been an effort to shut down crypto mixers, including Tornado Cash and Bitcoin Fog, which are strictly related to money laundering. In contrast to other mixers, Railgun follows a compliance-based approach that allows it to block any fund linked to illegitimate activities. The zkLend’s team tried to contact a hacker and make a deal to keep 10% of the stolen money and return the rest. However, the hacker has yet to respond. “To the hacker: We understand that you are responsible…

---

Filed under: News - @ February 14, 2025 2:24 am