Unidentified persons gained access to the funds of Solana-based wallet owners, stealing millions of dollars.
Blockchain auditor OtterSec initially reported emptying over 5,000 wallets in a matter of hours. The transactions were signed by the owners, which the researcher believes suggests that the private key has been compromised.
These transactions are being signed by the actual owners, suggesting some sort of private key compromise. pic.twitter.com/UTMq4NWErd
— OtterSec (@osec_io) August 3, 2022
According to Elliptic's calculations, during the attack, the hackers stole more than $5.2 million in SOL tokens, over 300 Solana-based coins, as well as NFT.
According to some reports, wallets that were inactive for more than half a year.
🚨 Widespread Solana private key compromise 🚨
– attacker is stealing both native tokens (SOL) and SPL tokens (USDC)
– affecting wallets that have been inactive for >6 months
– both Phantom & Slope wallets reportedly drained pic.twitter.com/AkZXOGLD0Q
— foobar (@0xfoobar) August 3, 2022
The attack affected Trust Wallet, Phantom and slope. Solana strongly encouraged users to transfer funds to hardware devices. The head of Binance, Changpeng Zhao, also advised sending assets to cold wallets or centralized exchanges.
At the time of writing, the reason for the hack is unknown. According to preliminary data, the attackers exploited the vulnerability.
According to CoinGecko, the SOL token sank by 4.6% against the backdrop of the news about the hack.
Recall, according to Atlas VPN estimates, for the first half of 2022 hackers stole almost $2 billion from crypto projects.
Read ForkLog bitcoin news in our Telegram — cryptocurrency news, courses and analytics.