Old Aztec Contract Hacked for $2.1M After Verification Mismatch

Aztec Connect, an old DeFi bridge linked to the Aztec ecosystem, was exploited on Sunday, resulting in a loss of $2.1 million from an Ethereum smart contract.

The attack targeted the RollupProcessorV3 contract and utilized a verification mismatch between how transactions were verified and settled on Ethereum records.

The issue allowed the attacker to create unbacked balances that could be moved through settlement, leading to the withdrawal of funds. This pattern was repeated seven times across several assets.

Aztec Labs stated that they had no admin keys or control over the system and were unable to pause activity due to its immutable nature.