Gate News message, April 20 — Solana liquidity protocol Orca responded to a recent security incident at Vercel, its frontend hosting provider, which involved unauthorized access to internal systems. Orca proactively rotated all potentially compromised keys and deployment credentials as a precautionary measure.
The protocol emphasized that the incident only affected the frontend hosting layer; the on-chain protocol and user funds remained unimpacted. Orca’s team continues monitoring developments and will provide timely updates.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Third-party AI breaches Vercel; Orca urgently rotates the key and confirms the agreement is secure
Decentralized exchange Orca announced that it has completed key rotation and confirmed that users’ funds are safe. This was done because the cloud platform Vercel was attacked. The attack method used a third-party AI tool’s OAuth integration to enter the Vercel system. A supply-chain vulnerability made it difficult for traditional security measures to be detected. Vercel reminded users to review environment variables to strengthen security protections, and noted that encryption projects’ reliance on cloud infrastructure creates a new security risk.
MarketWhisper30m ago
Pause the Reserve agreement for eUSD and USD3 minting; the redemption function remains fully enabled
The Reserve agreement was paused on April 20 for the minting of eUSD and USD3 and the RSR redemption and withdrawal operations due to the Kelp DAO rsETH attack event, but the redemption function remains operational. The attack caused a liquidity crisis at Aave, deposits dropped significantly, and the price of AAVE tokens fell.
MarketWhisper40m ago
Kelp DAO Bridge Exploit Results in $293M Mint, Leaves Aave With Over $200M in Bad Debt
An attacker exploited a vulnerability in Kelp DAO's cross-chain bridge, stealing $293 million in unbacked rsETH. The incident caused significant losses for DeFi platforms, with Aave facing up to $236 million in bad debt and substantial impacts on the market.
GateNews6h ago
Expert Claims Altcoin Metrics Are Being 'Gamed' to Mislead Investors
Crypto researcher Orbion raises concerns over the possible manipulation of key market indicators, including the Altseason Index and Crypto Fear and Greed Index, suggesting that inflated metrics create false optimism and mislead investors about the onset of altcoin season.
Coinpedia10h ago
Curve Finance Suspends LayerZero Infrastructure Following rsETH Hack
Curve Finance has temporarily suspended its LayerZero infrastructure due to a security incident involving rsETH. The protocol is investigating the issue, affecting certain cross-chain bridging operations while others continue as normal.
GateNews11h ago
