Gnosis Pay, a decentralized finance payment service, has likely been compromised due to a critical vulnerability discovered in its Delay Module, according to security firm PeckShield. The project's co-founder has issued an urgent recommendation for all users to withdraw their funds immediately, including holdings in EURe stablecoin and GNO tokens.
The vulnerability in the Delay Module represents a direct threat to user assets stored within the platform. While specific technical details of the exploit mechanism remain limited in initial reports, the severity assessment from both PeckShield's analysis and the co-founder's public warning indicates the flaw could enable unauthorized access or transfer of customer deposits. The incident underscores ongoing security challenges within DeFi infrastructure, particularly in modules governing transaction delays and fund access controls.
This breach follows a pattern of high-profile DeFi exploits in recent years and carries immediate implications for the broader Gnosis ecosystem. Gnosis Pay users face potential asset loss if they do not execute withdrawals promptly, while the incident may impact confidence in the platform's security protocols and operational governance. The co-founder's direct intervention suggests internal acknowledgment that the vulnerability poses an active and material risk requiring immediate user action.