🧵 What happened, what’s next - for Zara
1/
Over the weekend, I was targeted by a malware attack that compromised my Mac and drained multiple wallets - including the ones holding the circulating supply of the $ZARA token.
This was devastating. But I’m not going anywhere.👇
2/
The attack was triggered by opening a file that appeared safe. As soon as I sensed something was off, I started cleaning up but part of the payload remained.
It deployed a base64-encoded script that installed a persistent LaunchAgent, quietly harvesting wallet data even post-reboot.
It silently accessed wallet data while the volume was mounted. I’ve reported, traced the flows, and wiped/rebuilt everything.
Despite that, the attacker drained everything across both personal and dev wallets.
3/
To be 100% clear:
The Zara token treasury was affected
My personal funds (ETH, SOL, EigenLayer, DeFi assets.) were also fully drained
The hacker wallet is still traceable, and I’ve submitted reports and filed complaints to
4/
This has not affected any infrastructure, or any data/code powering Zara.
We had already backed up core assets, IP, and platform logic to cloud and verified that the smart contract systems are still clean. This was a targeted client-level compromise, not protocol-level.
5/
The circulating supply of $ZARA (approx. 11% of total) is the only affected piece.
No team funds, partner wallets, multisigs, or staking contracts were touched — staked $ZARA remains secure.
This is serious - and it’s on me to fix.
6/
So what now?
I’ve wiped and rebuilt my system from scratch.
This was an expensive lesson - wallet infrastructure is being regenerated and isolated, and I’m taking the opportunity to reinforce both team and personal opsec across the board.
We’re aligning on a new token recovery + community proposal, starting today.
I’m staying on, with full energy, and not hiding from this.
7/
To the builders who staked, the remixers who earned $ZARA, and early believers - I’m going to do everything I can to recover trust.
Zara is real.
Execution is real.
The protocol already proved remix-to-earn worked - and we’ll make it stronger than before.
8/
Most of all: thank you.
To everyone who DMed, offered help, or stayed patient - you reminded me why this project is worth building.
If you’re building, reach out. If you’re worried, ask. If you’re curious, stay close.
We’re rebuilding fast, transparently, and together. Community discussion and recovery proposals start today. Would love your input.
– Mayur
956
28
The content on this page is provided by third parties. Unless otherwise stated, OKX is not the author of the cited article(s) and does not claim any copyright in the materials. The content is provided for informational purposes only and does not represent the views of OKX. It is not intended to be an endorsement of any kind and should not be considered investment advice or a solicitation to buy or sell digital assets. To the extent generative AI is utilized to provide summaries or other information, such AI generated content may be inaccurate or inconsistent. Please read the linked article for more details and information. OKX is not responsible for content hosted on third party sites. Digital asset holdings, including stablecoins and NFTs, involve a high degree of risk and can fluctuate greatly. You should carefully consider whether trading or holding digital assets is suitable for you in light of your financial condition.