Lido: ZKsync wstETH Bridge Endpoint Contract Vulnerability

BlockBeats News, March 3rd, Lido officially stated that the ZKsync wstETH bridge endpoint contract has a potential vulnerability. There is currently no evidence that the vulnerability has been exploited, and wstETH holders on ZKsync are not affected. Other bridge contracts are unaffected. Out of an abundance of caution, Lido has temporarily paused new deposits to the ZKsync bridge contract, while withdrawals from ZKsync and token transfers are unaffected.

Lido has a fix prepared, which will be audited and deployed during the next scheduled on-chain Lido governance all-in-one vote (late March/early April), after which the deposit functionality will resume. Further updates will be released as the situation develops.