Gnosis Pay exploited via Zodiac delay module

Created at 1 Jun · 13:00 UTC3 sources↑ Market-relevant3 events

IN SHORT

Gnosis Pay experienced an exploit through its Zodiac delay module, enabling attackers to initiate unauthorized transactions from Safe wallets. The exact details of the exploit are still being investigated.

Who's Involved

Gnosis Pay

service that experienced a security exploit

Zodiac delay module

component exploited in the Gnosis Pay breach

Safe wallets

wallets from which attackers initiated transactions

Key facts

Gnosis Pay was exploited through its Zodiac delay module.
Attackers were able to initiate transactions from Safe wallets.
The specific details of how the exploit was carried out are still under investigation.

Gnosis Pay, a service that links self-custody crypto wallets to a Visa-connected card product, has been exploited. The vulnerability was found in its Zodiac delay module, a security feature designed to add a waiting period to transactions. Attackers were able to bypass this delay mechanism, allowing them to initiate unauthorized transactions directly from user Safe wallets. The full technical details of the exploit are still under investigation.

↳ Why This Matters

This exploit highlights potential security vulnerabilities in smart contract infrastructure used for bridging crypto assets with traditional payment systems, potentially impacting user trust and fund security.

FREQUENTLY ASKED

A flaw in the Zodiac delay module allowed attackers to bypass transaction delays and initiate unauthorized transactions from Safe wallets.

Gnosis Pay is a service that connects self-custody crypto wallets with real-world card payments.

The article does not specify containment measures for this particular event, but previous related events involved pausing activity and advising users to withdraw funds.

The provided text does not mention compensation for this specific incident, but a previous cluster noted Gnosis pledged full compensation for losses.

What Happens Next

01Further details on the exploit mechanism are expected to be released.

Key facts

Gnosis Pay was exploited through its Zodiac delay module.

Attackers were able to initiate transactions from Safe wallets.

The specific details of how the exploit was carried out are still under investigation.

Gnosis Pay exploited via Zodiac delay module

PiQ Daily

Key facts

Gnosis Pay exploited via Zodiac delay module

PiQ Daily

Key facts

Get the newsletter.