Hackers targeted Solana users, withdrawing millions from thousands of wallets.
On-chain data shows that losses are estimated to be around $8 million so far, more than $7,000 compromise wallet. That number has been rising at around 20 beats per minute, according to Ava Labs CEO and founder Emin Gun Sirer.
- Attack vector still unknown, but according to prominent blockchain security expert pecking the shieldhackers may have been exploited to steal users’ private keys behind affected wallets due to “supply chain issues”.
- The attacker managed to obtain native tokens (SOL) and SPL (USDC) from the hot wallet. Notably, most of those attacked had been inactive for more than six months.
- Solana-based hot wallets such as Phantom and Slope have been targeted, with experts warning users to move funds into offline cold wallets.
- Anonymous blockchain detective zachxbt observed that the hacker’s wallet was funded through Binance seven months ago.
- Additionally, it was dormant prior to the attack, with the hackers using four different wallets around 10 minutes before the incident.
- Solana confirmed the breach and revealed that around 7,767 wallets were affected by the breach.
Engineers from multiple ecosystems, with the help of several security companies, are investigating drained wallets on Solana. There is no evidence that hardware wallets were affected.
This thread will be updated as new information becomes available.
— Solana Status (@SolanaStatus) August 3, 2022
- There are also slopes comfirmed It is currently working with Solana Labs and other Solana-based protocols and teams to pinpoint the source of the problem.
Binance Free $100 (Exclusive): Use this link to sign up and get $100 for free and a 10% fee discount for your first month on Binance Futures (Terms).
PrimeXBT Special Offer: Use this link to sign up and enter code POTATO50 to get a deposit of up to $7,000.
