Audit log

Every state-changing event for zkLend: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

1. #1publishby system:backfill

   2026-05-28 01:44:33Z
   Score: ? → ? (no score change)
   anchoranchored

   chain

   ●mainnet-betaslot 422,622,630

   sig

   ruTzUuZicVWC…PybPHPbMcopyexplorer ↗

   hash

   5uQVG3QykBYi…4VdqFvMzcopysha256 → base58

   verifying row…full verify ↗

   canonical bytes (7344 B) ▸

   {"actor":"system:backfill","investigation_id":"125788f2-a280-4a2b-b290-72b445456c7a","kind":"publish","page_slug":"zklend","published_at":"2026-05-28T01:44:33.409Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"zkLend","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.globenewswire.com/news-release/2022/03/29/2412153/0/en/StarkNet-money-market-zkLend-raises-5M-in-seed-round-led-by-Delphi-Digital.html","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/business/2022/03/29/delphi-digital-leads-5m-seed-round-for-money-market-protocol-zklend","type":"other","url":""},{"credibility":3,"name":"https://mirror.xyz/decentdao.eth/YlGq-m2b2r_mHaebYCiksOpnA1zA19CIWZCr_o_T8zs","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/press-releases/money-market-zklend-raises-5m-in-seed-round-led-by-delphi-digital","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/business/2022/03/29/delphi-digital-leads-5m-seed-round-for-money-market-protocol-zklend","type":"other","url":""},{"credibility":3,"name":"https://www.globenewswire.com/news-release/2022/03/29/2412153/0/en/StarkNet-money-market-zkLend-raises-5M-in-seed-round-led-by-Delphi-Digital.html","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/zklend/zklend-security-incident-post-mortem-27d9abaf66f6","type":"other","url":""},{"credibility":3,"name":"https://blocksec.com/blog/zklend-exploit-post-mortem-unraveling-the-details-and-clarifying-misunderstandings-of-the-10m-flash-loan-attack","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-zklend-hack-february-2025","type":"other","url":""},{"credibility":3,"name":"https://rekt.news/zklend-rekt","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/zklend-starknet-hack-4-9m-bounty","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/zklend-hack-sees-9-5m-exploit-offers-hacker-10-bounty-for-return/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://slowmist.medium.com/in-depth-analysis-of-zklend-hack-linked-to-eralend-hack-fba4af9b66ef","type":"other","url":""},{"credibility":3,"name":"https://bitcoinethereumnews.com/tech/starknets-zklend-hacked-by-same-attacker-as-eralend-reveals-slowmists-chandler-guo/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/zk-lend-hacker-loses-stolen-eth-after-depositing-it-into-a-tornado-cash-phishing-site","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2025/04/03/zklend-hacker-loses-5-4m-in-phishing-attack-while-using-tornado-cash/","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/hacker-falls-victim-to-phishing-scam-after-exploiting-zklend-for-millions/","type":"other","url":""},{"credibility":3,"name":"https://www.cryptopolitan.com/zklend-hacker-loses-funds-phishing/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/zklend/zklend-compensation-plan-5682dcf91f57","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/zklend-opens-recovery-portal-for-zklend-exploit-2025/","type":"other","url":""},{"credibility":3,"name":"https://cryptonews.com/news/zklend-launches-recovery-portal-for-victims-of-the-drained-9-6-million/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/starknet-based-l2-protocol-zklend-shuts-down/","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/zklend-shutdown-zend-delisting/","type":"other","url":""},{"credibility":3,"name":"https://cryptonews.com/news/zklend-shuts-down-200k-recovery-fund-users/","type":"other","url":""},{"credibility":3,"name":"https://www.ainvest.com/news/zklend-shuts-9-5-million-exploit-allocates-200-000-recovery-fund-2506/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://github.com/NethermindEth/PublicAuditReports","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-zklend-hack-february-2025","type":"other","url":""},{"credibility":3,"name":"https://blocksec.com/blog/zklend-exploit-post-mortem-unraveling-the-details-and-clarifying-misunderstandings-of-the-10m-flash-loan-attack","type":"other","url":""}]}],"sources_used":[],"summary":"zkLend was a decentralized money-market lending protocol built on Starknet (Ethereum Layer 2), founded in 2022 by Brian Fu and Jane Ma and backed by Delphi Digital, Three Arrows Capital, and StarkWare. On February 11–12, 2025, the protocol suffered a critical flash-loan exploit that drained approximately $9.57 million in user funds through manipulation of the lending_accumulator variable and precision-loss rounding errors. The protocol permanently ceased operations in June 2025, allocating a $200,000 treasury remnant to a user recovery fund — leaving the vast majority of affected users uncompensated.","timeline":[{"date":"2022-02-01","event":"zkLend founded by Brian Fu and Jane Ma","source":""},{"date":"2022-03-29","event":"zkLend raises $5 million seed round led by Delphi Digital, with Three Arrows Capital, StarkWare, Alameda Research, and others participating","source":""},{"date":"2022-07-01","event":"zkLend testnet opens","source":""},{"date":"2023-07-25","event":"EraLend hack occurs (~$2.76 million loss); SlowMist later alleges the same attacker is responsible for the subsequent zkLend exploit","source":""},{"date":"2023-10-19","event":"zkLend officially launches on Starknet mainnet with Artemis and Apollo environments","source":""},{"date":"2025-02-11","event":"zkLend exploit begins; attacker manipulates wstETH market lending_accumulator via flash loans and rounding errors, draining approximately $9.57 million in ETH, USDC, STRK, and USDT","source":""},{"date":"2025-02-12","event":"zkLend suspends all withdrawals; publicly discloses exploit and offers 10% white hat bounty (~3,300 ETH) with February 14 deadline","source":""},{"date":"2025-02-14","event":"Attacker ignores white hat bounty deadline; funds not returned","source":""},{"date":"2025-02-14","event":"Stolen funds bridged to Ethereum; attacker attempts Railgun laundering — rejected by Railgun compliance policies, funds returned to attacker address","source":""},{"date":"2025-03-05","event":"zkLend opens Recovery Portal for affected users; compensation plan announced including ~82,818 recovery NFTs","source":""},{"date":"2025-03-31","event":"Attacker posts on-chain message to zkLend admitting to losing 2,930 ETH (~$5.4 million) to a fake Tornado Cash phishing site (tornadoeth.cash) while attempting to launder funds","source":""},{"date":"2025-06-25","event":"zkLend announces permanent shutdown of operations; cites hack fallout and ZEND token delistings from Bybit and KuCoin; allocates remaining $200,000 treasury to user recovery fund","source":""}]},"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision 28bd1fb4-ab01-492f-8935-f4cfc01ba723copy