The RWA lending protocol Zoth has confirmed a significant security breach, prompting an immediate investigation into the incident. An official announcement was made through social media platform X (formerly known as Twitter) stating, “Our system has experienced a security breach. We’re actively investigating the incident and taking all necessary steps to resolve it as swiftly as possible.”
Security Notice
Our system has experienced a security breach. We’re actively investigating the incident and taking all necessary steps to resolve it as swiftly as possible.
We are working closely with our partners to mitigate the impact and fully resolve the issue. A detailed…
— ZOTH (@zothdotio) March 21, 2025
Cyvers Alerts Confirms $8.4 Million Theft
As per Wu Blockchain, Cyvers Alerts carried out an investigation and it seems like the deployer wallet associated with the Zoth protocol may have been compromised. Approximately an hour before the announcement, a proxy contract named “USD0PPSubVaultUpgradeable” was upgraded to a version created by a suspicious address.
吴说获悉,据 Cyvers Alerts 监测,Zoth 协议的部署者钱包疑似遭到攻击。大约 1 小时前,其代理合约「USD0PPSubVaultUpgradeable」被升级至一个由可疑地址创建的合约,随后攻击者提取了 840 万美元的 USD0++ 资产,并迅速兑换为 DAI 转移至另一地址。目前,Zoth…
— 吴说区块链 (@wublockchain12) March 21, 2025
This upgrade allegedly allowed the attacker to withdraw around $8.4 million in USD0++ assets, which were swiftly converted into DAI and transferred to another address.
Zoth Protocol Follows Precautionary Measures
In response to the attack, Zoth has placed its official website into maintenance mode, as a precautionary measure related to the ongoing investigation. The team is collaborating closely with partners to mitigate the impact of the breach and aims to provide a detailed report once the investigation is completed.
Zoth has never faced such a major security breach in the past. However, Zoth has previously conducted rigorous security audits and implemented measures like KYC/KYB services to increase the platform’s safety and compliance, which indicates a proactive approach toward mitigating risks.
This Zoth protocol attack has resulted in a theft of $8.4 million. This theft indicates the growing security breaches in the decentralized finance (DeFi) space. Unlike traditional data breaches that usually target personal information, this incident directly impacted the financial asset by exploiting a vulnerability in its proxy contract.
Even though the monetary loss is significant within the crypto space, it is still smaller when compared to other massive breaches in the industry. As DeFi platforms grow, such incidents serve as a reminder of the need for stringent security protocols and vigilant monitoring against potential threats.
Zoth’s commitment to user safety and transparency will be crucial as the protocol makes its way through this difficult time.
