Live ZK Attack from a Smart Contract Perspective
βWhy Zero-Knowledge Apps Keep Getting Hacked
βLive ZK Attack from a Smart Contract Perspective
βπ June 19th | π 16:00 CET | π₯ Live Webinar
βMost ZK exploits don't break the cryptography. They break everything around it.
βZero-Knowledge applications are sold as privacy-preserving by default. In practice, the math works β but the systems leak. Privacy fails before the proof is even verified. Valid proofs get replayed. Commitments built from predictable inputs become identifiers. Public metadata correlates "private" operations.
βIn this online webinar, Olesia Bilenka β Smart Contract Auditor at Hacken with 150+ audits across EVM and TON ecosystems β walks through ZK application security from a smart contract auditor's perspective.
βNo SNARK math. No circuit optimization. No cryptography lecture.
βThis is an application-layer review of what can actually go wrong around the proof.
βWhat You'll Learn
ββ Build a minimal ZK application mental model β the 6-stage flow every auditor needs to internalize: private data β commitment β proof β public inputs β verifier β state update
ββ Watch one privacy property break live in code β deterministic commitment construction, the attack path from predictable inputs to full deanonymization, and the safer fix pattern
ββ Review the 5 core application-layer risk classes:
βRisk 1: Proving the wrong thing
βRisk 2: Nullifier and replay protection bugs
βRisk 3: Public inputs leaking privacy
βRisk 4: Valid proof, wrong context
βRisk 5: Privacy failing outside the contract (frontend, prover, relayer, logs)
ββ Turn the model into a practical audit checklist β the same 10-point review card Hacken auditors use on day one of any ZK engagement
βWho This Is For
βSmart contract auditors expanding into ZK reviews
βDevelopers building ZK applications (mixers, rollups, identity, private DeFi, ZK voting)
βSecurity engineers reviewing privacy-preserving systems
βProtocol founders and tech leads making ZK design decisions
βResearchers and students moving from theory to applied ZK security
βAbout the Speaker
βOlesia Bilenka | Smart Contract Auditor at Hacken
β4 years of professional smart contract auditing experience
β150+ audits delivered across Solidity (EVM) and FunC (TON)
βSoftware engineering background with focus on security and blockchain
βAuthor of technical articles on smart contract security and DeFi protocols
βAbout Hacken
Hacken is an end-to-end blockchain security and compliance partner for digital assets. Born on blockchain in 2017, Hacken combines deep DLT expertise with enterprise-grade quality, AI-powered offensive security, and globally recognized standards. Trusted by 1,500+ adopters β including the European Commission, ADGM, MetaMask, Ethereum Foundation, and Binance β Hacken delivers provable assurance for digital-asset systems across security, transparency, and regulatory readiness.