Era Lend on zkSync exploited for $3.4M in reentrancy attack
The lending app was drained of funds using a “read-only reentrancy” bug, a type of vulnerability that is often difficult for auditors to spot.
;