From Cointelegraph.com.

March 21, 2025 07:27:00 AM:

Real-world asset (RWA) re-staking protocol Zoth faced an exploit, resulting in $8.4 million in losses. Cyvers flagged a suspicious Zoth transaction where the attacker withdrew the funds and converted them into DAI stablecoin. Zoth’s website is on maintenance, addressing the breach. The attackers have swapped the assets into Ether.

Cyvers Alerts revealed admin privilege leak likely caused the hack on Zoth. A malicious version was deployed by a suspicious address, giving full control over user funds. Security measures like multisig contract upgrades, timelocks, and real-time alerts for admin role changes are advised. Unal believes admin key compromises remain a major risk in DeFi.

Read more at Cointelegraph: Hacker steals $8.4M from RWA restaking protocol Zoth