# Gnosis Pay Hit with Module Attack

*Published: Jun 1, 2026*
*Source: https://www.bankless.com/fr/gnosis-pay-hit-with-module-attack*

---

Gnosis confirmed [a bug](https://x.com/gnosispay/status/2061372038628196356) and [ensuing exploit](https://x.com/koeppelmann/status/2061362219984568719) tied to Gnosis Pay's Zodiac delay module today. In the wake of the attack, Gnosis cofounder Martin Koppelmann said the company "will cover all user losses."

### **What's the Scoop?**
- **The Vector:** The Zodiac delay module was compromised in a way that let the attacker push transactions into users' queues across many wallets simultaneously. Notably, the attack didn't touch users' private keys, and the full extent of losses hasn't been confirmed yet.
- **Possible Pattern:** The incident comes on the heels of a separate exploit last week that drained +$3M from dozens of Gnosis Safe wallets through a compromised community module, SquidRouterModule. It's unclear if the exploits are connected, but either way the module attack surface deserves more scrutiny now.

> A bug related to the [@gnosispay](https://x.com/gnosispay?ref_src=twsrc%5Etfw) delay module has been discovered. We are investigating & will share updates as soon as possible.If you are able to withdraw funds from the Gnosis Pay card to your wallet, we strongly recommend that you do that.Affected users will be reimbursed.— Gnosis Pay 🦉💳 (@gnosispay) [June 1, 2026](https://x.com/gnosispay/status/2061372038628196356?ref_src=twsrc%5Etfw)