Lido DAO has launched an emergency proposal to replace the Oracle Machine Node suspected of leaking the Private Key.

Techub News reports that Lido tweeted that Lido DAO has initiated an emergency proposal to replace the single Lido Oracle Machine Node managed by Chorus One due to concerns that the Private Key of the Oracle Machine may have been leaked. Staking users are unaffected, and the protocol remains secure and operational. Lido states that its Oracle Machine system employs a 9-out-of-5 multi-signature mechanism, meaning that a failure of a single Oracle Machine will not threaten the system, and the other nodes have not been affected. Currently, the Oracle Machine system is operating normally, with no software or data anomalies detected; the other 8 Oracle Machine nodes have been checked and found not to have been compromised, and no signs of a broader attack on Chorus One have been observed.

In response, Chorus One stated that on May 10, an unauthorized entity accessed a hot wallet managed by them, which was used for voting in the Lido Oracle Machine, resulting in the transfer of 1.46 Ethereum. Preliminary investigation results indicate that this is an isolated incident with limited impact. The team has conducted a comprehensive review of the entire infrastructure and found no signs of a broader intrusion. They are confident that no customer funds or validator infrastructure were affected and believe that the scope of the incident has been contained.