Audit log

Every state-changing event for ZKsync: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

1. #1publishby system:backfill

   2026-05-27 20:30:19Z
   Score: ? → ? (no score change)
   anchoranchored

   chain

   ●mainnet-betaslot 422,575,050

   sig

   51jTRBx6uxiC…Z2eDbgEecopyexplorer ↗

   hash

   5b8MzZxnAt5T…S9mETG4vcopysha256 → base58

   verifying row…full verify ↗

   canonical bytes (8197 B) ▸

   {"actor":"system:backfill","investigation_id":"9d227bdb-3345-4be5-aa9a-d03dcf819c80","kind":"publish","page_slug":"zksync","published_at":"2026-05-27T20:30:19.220Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"ZKsync","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://techcrunch.com/2022/11/16/matter-labs-the-company-behind-zksync-raises-200-million-to-scale-ethereum/","type":"other","url":""},{"credibility":3,"name":"https://www.coingecko.com/learn/what-is-zksync","type":"other","url":""},{"credibility":3,"name":"https://messari.io/project/zksync/profile","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.coindesk.com/business/2025/04/15/zksync-admin-wallet-compromised-usd5m-stolen","type":"other","url":""},{"credibility":3,"name":"https://thedefiant.io/news/hacks/zksync-suffers-usd5m-loss-after-admin-wallet-exploit","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/350839/zksync-discloses-5-million-attack-compromised-airdrop-contract-admin-account","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/316099/zksync-hacker-accepts-bounty-returns-nearly-5m-in-stolen-crypto","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/web3/2025/04/24/zksync-hacker-returns-5m-in-stolen-tokens-after-accepting-10-bounty","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-zksync-hack-april-2025","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://beincrypto.com/zksync-scam-hashtag-trending-airdrop-outrage/","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/zksync-airdrop-controversy-exposed/","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/zksync-faces-community-backlash-over-lack-of-anti-sybil-measures-in-zk-airdrop/","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/300608/zksync-token-airdrop-sales-nansen","type":"other","url":""},{"credibility":3,"name":"https://coinpedia.org/news/zksyncs-zk-price-drops-34-5-amid-controversial-airdrop-and-massive-sell-off/","type":"other","url":""},{"credibility":3,"name":"https://support.bitrue.com/hc/en-001/articles/33655629887897-ZKSync-s-Airdrop-Controversy-Community-Uproar-Over-Sybil-Attacks-and-Token-Distribution","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.dlnews.com/articles/markets/korean-regulators-probe-upbit-zksync-price-manipulation-after-970-surge/","type":"other","url":""},{"credibility":3,"name":"https://coinedition.com/south-korea-launches-probe-into-zksyncs-970-upbit-price-spike/","type":"other","url":""},{"credibility":3,"name":"https://coinspot.io/en/analysis/zksync-price-manipulation-on-upbit-brings-18-7m-to-15-wallets-in-a-few-hours/","type":"other","url":""},{"credibility":3,"name":"https://cryptorank.io/news/feed/c6904-zksync-price-manipulation-upbit-investigation","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cryptonews.com/news/zksync-and-matter-labs-x-accounts-hacked-in-phishing-scam-false-claims-of-us-probe-spread/","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/zksync-x-account-hack-falsely-claim-sec-probe-bid-crash-token","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/zksync-x-accounts-hacked-to-promote-fake-sec-warnings-and-malicious-airdrop/","type":"other","url":""},{"credibility":3,"name":"https://defi-planet.com/2025/05/zksync-and-matter-labs-x-accounts-hacked-in-phishing-scam-with-fake-sec-claims/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.coindesk.com/tech/2025/04/22/matter-labs-zksync-developer-sued-for-alleged-intellectual-property-theft","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/matter-labs-sued-by-bankex-over-alleged-theft-of-technology/","type":"other","url":""},{"credibility":3,"name":"https://thedefiant.io/news/hacks/matter-labs-sued-over-zksync-ip-5-7m-stolen-tokens-recovered-after-april-15-hack-dac77b11","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://coinpedia.org/news/zksyncs-zk-price-drops-34-5-amid-controversial-airdrop-and-massive-sell-off/","type":"other","url":""},{"credibility":3,"name":"https://www.ccn.com/analysis/crypto/zksync-zk-price-prediction/","type":"other","url":""},{"credibility":3,"name":"https://beincrypto.com/zksync-hack-token-dump-embezzlement/","type":"other","url":""}]}],"sources_used":[],"summary":"ZKsync is an Ethereum Layer 2 scaling protocol built on zero-knowledge rollup technology, developed by Matter Labs, which has raised approximately $458 million in venture capital. The protocol has faced multiple significant controversies including a $5 million airdrop contract exploit in April 2025, a contentious 2024 token airdrop marred by sybil attack failures and community backlash, a South Korean regulatory probe into alleged price manipulation, compromised social media accounts spreading false SEC investigation claims, and an intellectual property theft lawsuit filed against Matter Labs by defunct firm BANKEX. User funds in the core protocol have not been directly compromised, but the pattern of incidents has substantially eroded community trust.","timeline":[{"date":"2018-01-01","event":"Matter Labs founded by Alex Gluchowski and co-founders.","source":""},{"date":"2022-11-16","event":"Matter Labs closes $200 million Series C funding round co-led by Blockchain Capital and Dragonfly, with participation from Andreessen Horowitz. Total funding reaches approximately $458 million.","source":""},{"date":"2024-06-11","event":"Matter Labs announces the ZK token airdrop, allocating 17.5% of 21 billion total supply to community wallets.","source":""},{"date":"2024-06-17","event":"ZK token airdrop goes live to 695,232 eligible wallets. Token peaks at $0.3285. Within 24 hours, 41% of top recipients sell their full allocation, causing a 34.5% price drop. #ZKsyncScam trends on social media. Active addresses subsequently fall ~78.7% over the following month.","source":""},{"date":"2025-02-01","event":"ZK token surges 970% on South Korean exchange Upbit during a scheduled maintenance window, then collapses back to pre-surge levels. Approximately 15 wallets allegedly profit $18.7 million. South Korea's Financial Supervisory Service opens a market surveillance review.","source":""},{"date":"2025-03-19","event":"BANKEX files intellectual property theft lawsuit against Matter Labs in New York State Supreme Court, alleging co-founders stole BANKEX technology to build ZKsync.","source":""},{"date":"2025-04-15","event":"Compromised admin private key used to call sweepUnclaimed() on three ZKsync airdrop contracts, minting 111 million ZK tokens (~$5 million). ZK price falls 15-20%. ZKsync states user funds in the core protocol are not at risk.","source":""},{"date":"2025-04-21","event":"ZKsync issues on-chain safe harbor offer to the April 15 attacker: return 90% of funds within 72 hours and retain 10% as a bounty, or face criminal referral.","source":""},{"date":"2025-04-23","event":"Attacker accepts the safe harbor offer, returning over 44.6 million ZK tokens and approximately 1,800 ETH. ZKsync declares the case resolved. Recovered funds placed under Security Council custody.","source":""},{"date":"2025-04-22","event":"CoinDesk reports on the BANKEX lawsuit against Matter Labs filed March 19, bringing broader industry attention to the IP allegations.","source":""},{"date":"2025-05-13","event":"Official X accounts of ZKsync and Matter Labs are compromised. Hackers post false SEC investigation and Treasury sanctions warnings, followed by phishing airdrop links. ZK token falls ~2%. Accounts later secured; Matter Labs attributes breach to compromised delegated accounts.","source":""}]},"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision d28c7dd8-5c6f-4a5a-9c16-c55a72a0699ccopy
2. #2reviewby reviewerreviewer

   2026-06-14 23:16:01Z
   Score: 38 → 38 (no score change)
   Blue-chip calibration review (Prompt A). Verdict: over-penalized. Page content is treated as accurate; the trust_score band is miscalibrated. ZKsync is a legitimate Ethereum Layer 2 scaling protocol operated by Matter Labs, a well-funded company ($458M raised from credible institutional investors) with no fraud conviction, no exit-scam mechanics, and no Ponzi structure. Every material incident documented on the page — the airdrop admin key exploit, the Upbit price manipulation, the X account breach — was either suffered by ZKsync (external attacker) or occurred on a third-party platform. The airdrop exploit, the most serious event, was largely remediated: core user funds were never at risk, and ~$5.7M was recovered via safe harbor. The pending BANKEX civil lawsuit is unresolved and denied by Matter Labs; it does not constitute a finding of wrongdoing. The airdrop controversy (poor Sybil filtering, post-launch sell-off) reflects governance and product-quality weaknesses rather than fraud. Under the post-policy band semantics, WARNING (20–49) is reserved for entities with elevated fraud/loss risk or unresolved severe incidents; ZKsync fits CAUTIONARY (50–69) — a legitimate operator with material caveats including the unresolved IP lawsuit, documented operational-security shortcomings (two key compromises in one month), and persistent ecosystem engagement decline. A score of 57 reflects these caveats while correctly not punishing the entity for incidents it suffered.
   anchoranchored

   chain

   ●mainnet-betaslot 426,514,530

   sig

   4AtPSD4GhJqC…y586kd7vcopyexplorer ↗

   hash

   Gn9trVgWC1CT…B3DDEFn7copysha256 → base58

   verifying row…full verify ↗

   canonical bytes (1830 B) ▸

   {"actor":"reviewer","decided_at":"2026-06-14T23:16:01.082Z","decision":"review","investigation_id":"9d227bdb-3345-4be5-aa9a-d03dcf819c80","new_score":38,"page_slug":"zksync","prev_score":38,"reason":"Blue-chip calibration review (Prompt A). Verdict: over-penalized. Page content is treated as accurate; the trust_score band is miscalibrated. ZKsync is a legitimate Ethereum Layer 2 scaling protocol operated by Matter Labs, a well-funded company ($458M raised from credible institutional investors) with no fraud conviction, no exit-scam mechanics, and no Ponzi structure. Every material incident documented on the page — the airdrop admin key exploit, the Upbit price manipulation, the X account breach — was either suffered by ZKsync (external attacker) or occurred on a third-party platform. The airdrop exploit, the most serious event, was largely remediated: core user funds were never at risk, and ~$5.7M was recovered via safe harbor. The pending BANKEX civil lawsuit is unresolved and denied by Matter Labs; it does not constitute a finding of wrongdoing. The airdrop controversy (poor Sybil filtering, post-launch sell-off) reflects governance and product-quality weaknesses rather than fraud. Under the post-policy band semantics, WARNING (20–49) is reserved for entities with elevated fraud/loss risk or unresolved severe incidents; ZKsync fits CAUTIONARY (50–69) — a legitimate operator with material caveats including the unresolved IP lawsuit, documented operational-security shortcomings (two key compromises in one month), and persistent ecosystem engagement decline. A score of 57 reflects these caveats while correctly not punishing the entity for incidents it suffered.","score_delta":0,"sequence_num":2,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision d5f956e0-1320-4a4b-9509-281e9310730acopy
3. #3review approveby judgejudge

   2026-06-14 23:16:01Z
   Score: 38 → 57 (+19)
   This was a severity-calibration review, not a content dispute. All six claim_findings[0–5] are supported, and disputed_pct is 0%. The review establishes that ZKsync's current score of 38 (WARNING band) is miscalibrated: the April 2025 airdrop exploit affected only unclaimed reserve tokens — core user funds were never at risk — and ~$5.7M was recovered under a safe harbor agreement (claim_findings[1]). The Upbit price surge was caused by third-party market manipulators on a separate regulated exchange with no operational link to ZKsync (claim_findings[2]). The X account compromise was a phishing attack on delegated accounts, making ZKsync the victim (claim_findings[4]). The BANKEX lawsuit remains unresolved and denied (claim_findings[3]), and the entity is backed by credible institutional investors with no fraud conviction or exit-scam mechanics (claim_findings[5]). WARNING band is reserved for entities with elevated fraud/loss risk or unresolved severe incidents attributable to the entity itself; ZKsync fits CAUTIONARY (50–69). A score of 57 reflects the legitimate caveats — unresolved IP suit, two operational-security failures in one month, ecosystem engagement decline — without penalizing the entity for incidents it suffered. The page content is accurate and must remain published.
   anchoranchored

   chain

   ●mainnet-betaslot 426,514,533

   sig

   273JQEz3E6z7…xzbZmE6vcopyexplorer ↗

   hash

   6cctRe9ibG5t…vdsz15HCcopysha256 → base58

   verifying row…full verify ↗

   canonical bytes (1651 B) ▸

   {"actor":"judge","decided_at":"2026-06-14T23:16:01.082Z","decision":"review_approve","investigation_id":"9d227bdb-3345-4be5-aa9a-d03dcf819c80","new_score":57,"page_slug":"zksync","prev_score":38,"reason":"This was a severity-calibration review, not a content dispute. All six claim_findings[0–5] are supported, and disputed_pct is 0%. The review establishes that ZKsync's current score of 38 (WARNING band) is miscalibrated: the April 2025 airdrop exploit affected only unclaimed reserve tokens — core user funds were never at risk — and ~$5.7M was recovered under a safe harbor agreement (claim_findings[1]). The Upbit price surge was caused by third-party market manipulators on a separate regulated exchange with no operational link to ZKsync (claim_findings[2]). The X account compromise was a phishing attack on delegated accounts, making ZKsync the victim (claim_findings[4]). The BANKEX lawsuit remains unresolved and denied (claim_findings[3]), and the entity is backed by credible institutional investors with no fraud conviction or exit-scam mechanics (claim_findings[5]). WARNING band is reserved for entities with elevated fraud/loss risk or unresolved severe incidents attributable to the entity itself; ZKsync fits CAUTIONARY (50–69). A score of 57 reflects the legitimate caveats — unresolved IP suit, two operational-security failures in one month, ecosystem engagement decline — without penalizing the entity for incidents it suffered. The page content is accurate and must remain published.","score_delta":19,"sequence_num":3,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision 6bbb6331-d8bd-4960-bba5-fbb6bc08fc36copy