On April 21, ZKsync issued an announcement offering a 10% bounty to the hacker, stating that in the spirit of friendly resolution, the hacker's refund window would be valid for 72 hours from the date of publication on the ETH blockchain.
After receiving all ZK and ETH before the deadline, ZKsync will publicly confirm the solution. If the funds are not returned before the deadline, the team will report the matter to law enforcement for a comprehensive criminal investigation.
On April 15, ZKsync confirmed the theft, which was due to the leakage of the administrator account's private key.
