In these hours, a malicious actor has exploited an unspecified vulnerability to drain over 7,000 wallets from the Solana network. 7 million dollars stolen.
In these hours, a malicious actor has exploited an unspecified vulnerability to drain over 7,000 wallets of the Solana network , the most popular alternative cryptocurrency to Ethereum. As of this writing, the ways that made this unprecedented attack possible are not well known.
Hundreds of testimonials spread on Twitter: some users have lost thousands of euros in a short time. In at least one case, more than $ 500,000 was stolen. While in the past this kind of theft was usually associated with reckless user behavior, this time it seems that wallets are emptied without the victim having committed any significant misstep – for example clicking a malicious link or authorizing an untrustworthy dApp . .
2 / Over 7,000 wallets impacted. Over $ 7M. as of 10:00 PM EST.
List of affected wallets below, with hackers wallet at the top https://t.co/5aCn22ydGl
– Kiyomi (104) (@kiyomiwallet) August 3, 2022Advertisement
Crypto influencer Kiyomi posted a long Twitter thread with all the information currently available on what has already been dubbed ‘ The Great Drain ‘:
- Over 7,000 wallets are affected. In just a few hours, the hackers drained the equivalent of over $ 7 million
- Most of the users involved used the Phantom and Slope wallets
- Hackers may have exploited a ‘supply-chain’ problem. Translated: a vulnerability not so much of Phantom and Slope, but of the open source code used by these and many other browser extensions. Pending further developments, however, it is only a hypothesis.
this wallet has drained 500k worth of USDC RIGHT NOW, absolutely everyone is getting drained holy shit, move ur shit to ledgers ASAP
– Paladin (@nftpeasant) August 2, 2022
How to secure your Solanas, waiting to figure out what’s going on
Magic Eden, the most important NFT marketplace in the Solana ecosystem , advised all users to transfer all their assets to a new wallet. If possible, users should use what in the jargon is called a ‘ cold wallet ‘, that is a hardware wallet and not connected to the web – unlike Phantom, to understand, the most popular hot wallet for Solana available both as an App for Android and iOS, both as a browser extension.
🚨🚨🚨There seems to be a widespread SOL exploit at play that’s draining wallets throughout the ecosystem
Here’s what you can do right now to best protect yourself
1. Go to> Settings on your @phantom wallet
2.> Trusted Apps
3.> Revoke Permissions for any suspicious links
– Magic Ethen 🪄 (@MagicEden) August 3, 2022
If you don’t need to manage dozens of different cryptocurrencies, we suggest you rely on the Ledger Nano S Plus wallet, one of the best for value for money .
While waiting to be able to transfer the funds to a cold wallet, it is essential that the user removes every single authorization granted by their Phantom wallet . Considering the extraordinary nature of the situation, it is imperative to also remove the authorizations to sites and dApps that are generally considered reliable, such as Magic Eden, Matrica and Mercury. As far as we know, one or more of these sites may have been compromised.
8 / Here’s a video on how to revoke app access on Phantom
CC: @Cryptorata pic.twitter.com/PBK1RLgCab
– Kiyomi (104) (@kiyomiwallet) August 3, 2022