Gnosis Co-Founder Says Protocol Will Cover User Losses Tied to Gnosis Pay Exploit
Gnosis said an exploit in the Zodiac delay module tied to Gnosis Pay let attackers bypass transaction delays, while Safe core contracts were unaffected and users were urged to withdraw EURe and GNO.
Gnosis confirmed that a Gnosis Pay-related exploit affected the Zodiac delay module used with integrated Safe wallets, allowing attackers to initiate transactions or bypass the intended three-minute transaction delay. The company said Safe core contracts were unaffected, urged users to withdraw EURe and GNO, asked cross-chain bridge validators to pause operations, and stated that it will cover all user losses in full. Gnosis has not disclosed total losses or a full post-mortem. The incident was reported alongside a separate TesseraDAO exploit, in which an attacker minted 99 million TSR tokens on BNB Chain and sold them for about $2.5 million in USDT, causing a 99% collapse in TSR’s price; PeckShield said some proceeds were later moved to Ethereum and 1,285.5 ETH was sent through Tornado Cash.
- Zodiac delay module: A module used with Safe wallet setups to impose delayed execution or transaction-control logic; Gnosis said the exploit was tied to this component rather than Safe core contracts.
- Safe wallets: Smart contract-based crypto wallets that can integrate modules and additional transaction controls.
- cross-chain bridge validators: Entities that verify and process asset transfers between blockchains; Gnosis asked them to pause operations during the incident response.