zkLend Hacker Loses $5.4M in Phishing Attack While Using Tornado Cash

🤦‍♂️ Crypto Hacker Loses $5.4M in Phishing Scam 🤑

Oh dear, it seems the universe has finally caught up with the universe’s most incompetent hacker. In a stunning display of incompetence, the scoundrel behind the February 2025 zkLend exploit has managed to lose a whopping $5.4 million worth of Ethereum (ETH) in a phishing scam. Because, you know, who needs a decent security system when you can just use Tornado Cash? 🤣

According to onchain analytics firm Lookonchain, Karma (the universe’s way of saying “you’re a jerk”) has decided to pay a visit to this hacker, who had previously stolen 2,930 ETH from zkLend. It’s a bit like the universe is saying, “Hey, you thought you were clever, but really you’re just a big doofus.” 🤦‍♂️

It’s a bit of a Karma-filled cycle, really. Hacker steals 2,930 ETH from zkLend… then gets phished while using Tornado Cash. All 2,930 ETH gone — to another thief. Karma hit fast.

— Lookonchain (@lookonchain) April 1, 2025

The hacker, in a moment of sheer brilliance, managed to send an onchain message to the zkLend deployer address, apologizing for the whole debacle and blaming the phishing website. It’s a bit like saying, “I’m sorry I messed up, but it’s not my fault, I used a fake website!” 🙄

As it turns out, the hacker had been using a fake Tornado Cash website, dubbed “tornadoeth[.]cash”, which had been operating undetected for over five years. Because, you know, who needs security when you can just use a dodgy website? 😏

Tornado Cash, the very same service that’s supposed to obscure transaction trails, has been the target of phishing schemes for years. It’s a bit like the universe is saying, “Hey, Tornado Cash, you’re supposed to be secure, but really you’re just a big target for scammers.” 🤦‍♂️

And to make matters worse, the incident reflects a troubling trend in rising crypto scams and security breaches. According to Immunefi’s Q1 2025 report, the first quarter of the year saw a record-breaking $1.64 billion stolen in various crypto-related attacks. It’s a bit like the universe is saying, “Hey, crypto users, you’re all just sitting ducks waiting to be scammed.” 🤑

For zkLend users and the broader crypto community, this incident serves as both a cautionary tale and a testament to the ever-evolving dangers lurking in the digital asset landscape. So, do take heed, folks. Don’t use Tornado Cash. Don’t use phishing websites. And for goodness’ sake, don’t be a hacker. 🙏

Read More

• Ludus promo codes (April 2025)

• Cookie Run Kingdom: Shadow Milk Cookie Toppings and Beascuits guide

• DEEP/USD

• Cookie Run Kingdom Town Square Vault password

• ZEREBRO/USD

• Tap Force tier list of all characters that you can pick

• 10 Hardest Bosses In The First Berserker: Khazan

• Realms of Pixel tier list – What are the best heroes in the game?

• Grimguard Tactics tier list – Ranking the main classes

• Fortress Saga tier list – Ranking every hero

2025-04-02 22:13