# Gnosis Pay Hack Root Cause *The vulnerability was tied to Zodiac, an operating layer for Safe wallets. Any project using impacted Zodiac modules should check their exposure. * By [ETH Daily](https://ethdaily.io) ยท 2026-06-02 gnosis-pay, zodiac, safe, exploit, security, defi, gnosis-chain --- Gnosis Pay has fully [contained](https://x.com/gnosispay/status/2061831214273564986) a hack tied to a vulnerability in Zodiac, an operating layer for Safe wallets. The bug affected two specific modules, Roles Modifier v2 and Delay Modifier v1.1.0, which impacted accounts where one of the modules was enabled and a Safe with a vulnerable fallback handler was assigned as a module. The incident traces back to last week's [delay module hack](https://ethdaily.io/gnosis-pay-delay-module-hack) disclosure. The vulnerability [extended](https://x.com/koeppelmann/status/2061864536294981840) beyond just Gnosis Pay. Any project using Zodiac's Delay or Roles modules should [check their exposure](http://app.zodiac.eco/public/fallback-handler) immediately. Safe smart contracts, Safe{Wallet} infrastructure, and other Zodiac modules are not affected. Gnosis Pay plans to begin restoring operations in batches over the coming days. Gnosis Pay user will receive a new card Safe. Affected users will have funds migrated automatically. Unaffected users will go through a manual migration step. * * * Sponsored by ------------ [![](https://storage.googleapis.com/papyrus_images/c1601768ccd1e18790b01ead6c41fbdec5a7fd86de67db5b0c7ab8ac0291c413.png)](https://ethconf.com/r/ETHDAILY) ETHConf lands in NYC June 8-10, bringing together 5,000+ attendees, 150+ speakers, and 100+ companies across Ethereum, stablecoins, and institutional adoption. Get your tickets at [ethconf.com](https://ethconf.com/r/ETHDAILY) and use code ETHDAILY for 30% off General and 20% off VIP. * * * Disclaimer: Content is for informational and educational purposes only and does not constitute financial, investment, legal, or other professional advice. No representations or warranties are made as to accuracy, completeness, or timeliness. Use of this content is at your own risk, and you should consult a qualified professional before making decisions. No fiduciary or advisory relationship is created --- *Originally published on [ETH Daily](https://ethdaily.io/gnosis-pay-hack-root-cause)*