Gnosis Pay users are being urgently advised to withdraw their assets following an active exploit targeting the platform’s underlying smart contract architecture. The critical security warning was issued by Gnosis co-founder Martin Köppelmann and corroborated by blockchain security firm PeckShield, both urging users to immediately remove all EURe and GNO tokens from the platform to prevent unauthorized asset drains.
The underlying vulnerability stems from a flaw within the Zodiac delay module, a component integrated into Gnosis Pay’s Safe-based smart contract wallets. Under normal operations, this module is designed to enforce a brief waiting period on outgoing transactions, providing a security buffer for Visa-integrated card payments while maintaining user self-custody. However, Köppelmann revealed that the bug allows an attacker to bypass standard security parameters and directly initiate unauthorized transactions from Safes utilizing the module.
To mitigate the immediate fallout, the Gnosis team is actively taking containment measures, including coordinating with external infrastructure networks and requesting bridge validators to temporarily pause operations. This intervention aims to halt the cross-chain movement of any stolen funds. While a definitive loss figure has not yet been publicized and a full post-mortem remains pending, Köppelmann assured the community that Gnosis will completely cover all user financial losses resulting from the breach. The exploit marks a significant technical hurdle for Gnosis Pay, placing renewed industry scrutiny on the automated transaction-timing code that governs web3 payment networks.
