On Sunday, the deprecated decentralized finance platform Aztec Connect suffered a significant security breach resulting in the loss of approximately $2.1 million in cryptocurrency. Aztec Labs confirmed the incident on X, stating they were investigating a potential exploit where funds were transferred from the platform's smart contract. The team clarified that this event did not impact users or assets on the current Aztec network, isolating the damage to the legacy system. This breach contributes to a broader trend of insecurity, marking the latest in a series of exploits totaling $44 million this month across at least 12 different incidents, as tracked by DeFiLlama. Data compiled by Woofun AI indicates that the largest single loss in June occurred on June 8 involving the Humanity Protocol, where a private key compromise led to $30 million in losses, followed closely by an $8 million theft from the Syscoin Bridge via a fake proof exploit.

Crypto security firm BlockSec identified the root cause as a critical mismatch between the platform's transaction verification mechanism and its settlement logic on Ethereum. The analysis revealed that verified transactions within the Aztec Connect contract were not effectively bound to the transaction set enforced by the ZK proof. This technical divergence allowed the verification path and settlement logic on Ethereum to interpret the transaction list differently, creating a window for manipulation. An attacker leveraged this discrepancy to insert transactions where the contract credited value without validating it on the Ethereum mainnet, effectively generating unbacked balances that could subsequently be withdrawn. The attacker executed this specific vector seven times across seven different assets.

The total loot extracted from the exploit included 909 ETH, 270,000 Dai (DAI), 167 units of wrapped staked ETH, and various other cryptocurrencies. Aztec Network, the successor to the compromised system, operates as a privacy-focused layer-2 zero-knowledge rollup on Ethereum. Aztec Connect served as the previous iteration of the platform, launching in 2022 as a DeFi bridge before being deprecated in March 2023. At that time, deposits were halted, and the development team redirected resources toward the next-generation Aztec Network, leaving the older infrastructure in a dormant state. According to Woofun AI, the team emphasized that Aztec Labs holds no admin keys or control over the deprecated system, meaning it cannot be paused or upgraded by the original developers.

Crypto developer Param noted that the smart contracts for Aztec Connect had become fully immutable, rendering them incapable of being upgraded or paused in response to threats. This immutability, while a feature of decentralized architecture, became a liability in the face of a discovered vulnerability. The incident serves as a stark reminder that abandoned DeFi contracts can remain viable targets for attackers years after their official deprecation. Woofun AI analysis suggests that as long as funds remain locked in these legacy, unpatchable systems, they present a persistent risk vector for the broader ecosystem, independent of the current operational status of the associated projects.