LayerZero Accused of Critical OPSEC Failure After Multisig Keys Traded McPepes Memecoin

yesterday / 18:26 3 sources negative

Key takeaways:

  • LayerZero’s security controversy could accelerate user exodus, weighing on ZRO’s market position.
  • Solv Protocol’s shift to Chainlink CCIP validates LINK as a more secure cross-chain standard.
  • The incident underscores infrastructure token risks from poor OPSEC, likely favoring audited competitors.
ZRO ZRO $1.48 -0.53%

Cross-chain messaging platform LayerZero is confronting serious operational security (OPSEC) allegations after on-chain evidence revealed that its production multisig keys were used to trade the McPepes memecoin on Uniswap. On May 8, 2026, screenshots from an internal discussion went viral on X, showing that three of the five signers of the 2-of-5 Gnosis Safe multisig—a setup designed to protect billions in user funds and control critical Omnichain Fungible Token (OFT) infrastructure—engaged in activities on decentralized exchanges instead of maintaining key isolation.

The exposed signer addresses include 0x1f5E377a3ADBe6f3289ADb6b21eae6427dfbb553, which swapped 0.198548073 ETH for roughly 1.73 million McPepes tokens via Uniswap V3 on March 1, 2023, well before the PEPE deployment schedule. Another signer, 0xBb6633c267951E938F9B6421E4F54aa5b2c19326, held about $12 million and staked on Stargate, while 0x6fC8342C448F9a8d541C17579EF7A14237b8d5aD supplied liquidity on Curve, PancakeSwap, and SpookySwap. The multisig lacked a timelock, and keys remained unrotated for years, meaning just two compromised signers could drain the entire wallet.

LayerZero CEO Bryan Pellegrino responded that the transactions were made by former multisig members who had already been removed, insisting the actions were “OFT testing” and not speculation. The community rejected this, noting that an ETH-to-memecoin Uniswap swap hardly constitutes operational testing. Zach Rynes, a well-known Chainlink community advocate, called the security practices “horrifying” and warned of supply-chain attack risks for protocols relying on LayerZero defaults.

The revelations came only hours after Solv Protocol announced it would migrate over $700 million in tokenized BTC (SolvBTC and xSolvBTC) from LayerZero to Chainlink’s CCIP, citing bridge security reviews and the recent Kelp DAO hack. No full audit of the former signers’ actions has been published by LayerZero, and the incident has sparked broader calls for transparency and improved OPSEC across the infrastructure sector.

Previously on the topic:
May 5, 2026, 9:37 p.m.
Kelp DAO Accuses LayerZero of Approving Flawed Setup that Led to $292M Exploit, Migrates to Chainlink
ZRO ZRO LayerZero $1.48 -0.53%
Post-revelation of critical OPSEC failure and $700M protocol migration, market confidence is shattered; expect strong sell-off in short-term, long-term recovery hinges on transparent remediation.
Sources
Problems pile up for LayerZero amid fresh memecoin trading accusations
cryptopolitan.com 08.05.2026 14:03
LayerZero Faces New OPSEC Allegations After Multisig Keys Trade McPepes on Uniswap
crypto-economy.com 08.05.2026 18:00
LayerZero admits single-validator flaw in Lazarus attack, commits to multi-validator security overhaul
bitcoinworld.co.in 09.05.2026 01:10
Top Today
yesterday / 22:08 5 sources
Crypto Exchanges and Banks Clash Over CLARITY Act Provisions on Token Listings and Stablecoin Yield
yesterday / 19:00 5 sources
USD Steady as Hiring Recovery Supports Fed Patience Amid Structural Headwinds
yesterday / 18:56 6 sources
TeraWulf’s HPC Leasing Revenue Overtakes Bitcoin Mining for the First Time
BTC BTC $80383.00 +0.96%
yesterday / 18:52 8 sources
SEC Chair Atkins Signals New Rules for On-Chain Markets and AI-Driven Finance
yesterday / 18:48 6 sources
Kraken Parent Payward Applies for OCC Charter to Launch Federal Crypto Trust Bank
yesterday / 18:13 5 sources
Intel-Apple Chip Deal Ignites Tech Rally Amid Trump Stake Boost
yesterday / 18:06 8 sources
GoMining Launches GoBTC Pay to Bring Native Instant Payments to Bitcoin
BTC BTC $80383.00 +0.96%
Disclaimer

The content on this website is provided for information purposes only and does not constitute investment advice, an offer, or professional consultation. Crypto assets are high-risk and volatile — you may lose all funds. Some materials may include summaries and links to third-party sources; we are not responsible for their content or accuracy. Any decisions you make are at your own risk. Coinalertnews recommends independently verifying information and consulting with a professional before making any financial decisions based on this content.