Skip to content
Est. MMXXVIVol. VI · № 273RSS
Blockchain Breaches

An archive of cryptocurrency security incidents — hacks, exploits, bridge failures and rug pulls, documented with on-chain evidence.

Dossier № 223Smart Contract Bug

ZeroLend Empty-Market Donation

ZeroLend lost ~$371K to a classic empty-market share-inflation donation attack on a freshly-listed market that lacked a protective initial deposit.

Date
Victim
ZeroLend
Chain(s)
Linea
Status
Partially Recovered

In February 2025, a ZeroLend market on Linea lost approximately $371,000 to a share-inflation / donation attack on a freshly-listed market that had no protective initial deposit.

What happened

A newly-listed ZeroLend market with negligible supply was exploited by donating assets directly to the market to inflate the share price, then exploiting the rounding to extract disproportionate value — the canonical empty-market donation attack.

Aftermath

  • Market paused; partial recovery.

Why it matters

ZeroLend is yet another empty-market donation attackHundred Finance, Sonne, Resupply, Raft, and now ZeroLend. The mitigation is one transaction (a permanently-locked protective initial deposit, or virtual-shares offset) and has been documented since 2021. Its continued absence in freshly-listed markets across years and chains is one of the catalogue's single clearest "the fix is known, free, and skipped" patterns.

Sources & on-chain evidence

  1. [01]halborn.comhttps://www.halborn.com/blog/post/explained-the-zerolend-incident-february-2025
  2. [02]rekt.newshttps://rekt.news/zero-to-lend-rekt

Related filings