TechFlow news, February 12 — Regarding today's zkLend hack resulting in over $9 million stolen, SlowMist released an analysis stating that the root cause of this attack lies in the safeMath library used by the market contract.
During division calculations, the contract uses direct division, which introduces a rounding vulnerability when calculating the actual amount of zTokens that should be burned during withdrawal. Attackers could exploit this vulnerability to illegally profit.




