DeFi News

Aztec Network’s RollupProcessor Exploited for $2.21 Million 

This exploit follows closely on the heels of a separate ~$2.19 million attack days earlier on its deprecated Aztec Connect RollupProcessorV3 contract, which was compromised via a ZK-rollup settlement boundary bypass.

Written By:
Gopal Solanky
Aztec Network’s RollupProcessor Exploited for $2.21 Million
The Aztec Network exploit highlights broader vulnerabilities in zero-knowledge proof verification and access control within ZK-rollup architectures.
Recurring security breaches in Aztec Network underscore long-term risks associated with immutable smart contracts holding residual funds.
The incident marks the second significant DeFi exploit disclosed by SlowMist in a short timeframe, emphasizing the need for enhanced security measures.

Blockchain security firm SlowMist has disclosed a significant exploit targeting Aztec Network’s RollupProcessor contract, resulting in the theft of approximately 1,158 ETH, 150,000 DAI, and 0.4696 renBTC—totaling around $2.21 million USD. 

The attack exploited the escapeHatch() function in the RollupProcessor contract at address 0x7379…2a2ba. According to SlowMist’s analysis, this function lacked essential access controls, such as an onlyOwner modifier, rollup provider authorization, or signature verification. 

The TurboVerifier contract at 0x48cb…e8ce8 accepted escape hatch proofs even when rollupSize was set to zero. Consequently, the processDepositsAndWithdrawals() function trusted spoofed proofData public inputs—including publicOutput, outputOwner, and assetId—without validating actual fund ownership or withdrawal balances.

At the time of publication, Aztec team has not shared anything regarding the exploit.

This vulnerability enabled the attacker’s externally owned account (0x6952…8e97f) to execute unauthorized withdrawals, including a direct drain of 1,158 ETH in a single transaction.

Source: Etherscan

The incident highlights persistent risks in zero-knowledge proof verification and access control mechanisms within ZK-rollup architectures, even in active components of the protocol.

Aztec Network, a leading privacy-focused Ethereum ZK-rollup, has faced recent scrutiny. This exploit follows closely on the heels of a separate ~$2.19 million attack days earlier on its deprecated Aztec Connect RollupProcessorV3 contract, which was compromised via a ZK-rollup settlement boundary bypass. While the current network remains distinct, the repeated incidents underscore the long-tail risks associated with immutable smart contracts holding residual funds.

This Aztec breach represents the second DeFi exploit disclosed by SlowMist in hours. The first involved LittleBoyPlus being drained on BNB Smart Chain, where a flaw in the LBPHashrate._update() function allowed unauthorized token minting and a subsequent drain of roughly 377,642 USDT (~610 BNB) through PancakeSwap liquidity imbalances. 

The events serve as a stark reminder for DeFi projects to prioritize rigorous audits, robust authorization logic, and ongoing monitoring of both active and legacy contracts to safeguard user assets in an evolving threat landscape. 

This is a developing story and more information will be added as the event unfolds.

Disclaimer: The information researched and reported by The Crypto Times is for informational purposes only and is not a substitute for professional financial advice. Investing in crypto assets involves significant risk due to market volatility. Always Do Your Own Research (DYOR) and consult with a qualified Financial Advisor before making any investment decisions.
Google News Banner
TAGGED:
Share This Article
Gopal Solanky, Senior Reporter for Markets and Protocols at The Crypto Times
By Gopal Solanky Sr. Crypto Journalist
Follow:
Gopal Solanky is a Senior Reporter, Markets & Protocols at The Crypto Times, based in Ahmedabad. He covers institutional crypto adoption, Bitcoin treasury strategies, DeFi markets, protocol ecosystems, Ethereum network activity, Hyperliquid, on-chain trends, and broader digital asset market movements. Gopal has been active in the crypto ecosystem for more than six years. Before joining The Crypto Times full-time in 2023, he worked as a freelance crypto content writer, developing a strong understanding of blockchain infrastructure, DeFi protocols, market cycles, token mechanics, and peer-to-peer systems. His reporting focuses on explaining how protocols work, why market movements happen, and how institutional and on-chain activity affects crypto investors and builders. At The Crypto Times, Gopal regularly writes market analysis, protocol explainers, breaking news, and technical breakdowns across Bitcoin, Ethereum, DeFi, altcoins, treasury companies, and Web3 infrastructure. He also conducts on-the-record interviews with regional Web3 founders, protocol teams, and ecosystem leaders. His work has been cited by external publications, including Vulture.com, in coverage of major crypto stories such as the Hawk Tuah memecoin controversy. His reporting has also contributed to The Crypto Times’ coverage of major industry events, including FTX-related developments, institutional crypto adoption, and emerging protocol narratives. Gopal holds a Bachelor’s degree in Computer Applications, giving him a technical foundation for analyzing blockchain systems, crypto infrastructure, and market data.

Latest News

How the New Fed Chair Just Crushed Crypto's Rate-Cut Hopes
How the New Fed Chair Just Crushed Crypto’s Rate-Cut Hopes
BitGo Europe Launches MiCA-Compliant Crypto-as-a-Service Platform in EU
BitGo Europe Launches MiCA-Compliant Crypto-as-a-Service Platform in EU
Tether Kills Alloy and aUSD₮, Shifting Focus to Liquid Assets
Tether Kills Alloy and aUSD₮, Shifting Focus to Liquid Assets
Kentucky Sues Kalshi and Polymarket As Prediction Market Wars Escalates
Kentucky Sues Kalshi and Polymarket As Prediction Market Wars Escalates
OKX’s Star Xu Slams Binance, Says Compliance Dodging Is Over
OKX’s Star Xu Slams Binance, Says Compliance Dodging Is Over

Find Us on Socials

You may also like