{"id":15860,"date":"2023-01-20T22:23:51","date_gmt":"2023-01-20T22:23:51","guid":{"rendered":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/"},"modified":"2023-01-20T22:23:52","modified_gmt":"2023-01-20T22:23:52","slug":"thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit","status":"publish","type":"post","link":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/","title":{"rendered":"Thousands of Solana wallets drained in multimillion-dollar exploit"},"content":{"rendered":"<p>Source:<a href=\"https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/\">https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/<\/a><\/br><br \/>\nThousands of Solana wallets drained in multimillion-dollar exploit<\/br><br \/>\n2023-01-20 22:23:51<\/br><\/p>\n<div readability=\"93.467091910699\">\n<p id=\"speakable-summary\">Solana, an increasingly popular blockchain known for its speedy transactions, has become the target of the crypto sphere\u2019s latest hack after users reported that\u00a0funds have been drained from internet-connected \u201chot\u201d wallets.<\/p>\n<p>An unknown actor drained funds from approximately 8,000 wallets on the Solana network, Solana\u2019s Status Twitter account <a href=\"https:\/\/twitter.com\/SolanaStatus\/status\/1554658171934937090\" target=\"_blank\" rel=\"noopener\">said.<\/a>\u00a0It\u2019s\u00a0<a href=\"https:\/\/twitter.com\/PeckShieldAlert\/status\/1554674781383180289?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1554674781383180289%7Ctwgr%5E9efe7ae5ccf152cfaa357ef15c5b2320e520623c%7Ctwcon%5Es1_&#038;ref_url=https%3A%2F%2Fcointelegraph.com%2Fnews%2Fongoing-solana-based-wallet-hack-has-already-seen-millions-drained\" target=\"_blank\" rel=\"noopener\">estimated<\/a> the loss so far is around $8 million.<\/p>\n<p>The attack \u2014 which has only affected only \u201chot\u201d wallets or wallets that are always connected to the internet, allowing people to store and send tokens easily \u2014 does not appear to be limited to Solana. Justin Barlow, an investor at Solana Ventures, <a href=\"https:\/\/twitter.com\/justinbarlow\/status\/1554622761376460800?s=21&#038;t=jzdXyga8MnxIz69wtfhOcA\" target=\"_blank\" rel=\"noopener\">reported<\/a> that his USDC balance was drained as well.\u00a0Crypto analyst\u00a0<a class=\"sc-adb616fe-0 ePvUAp\" href=\"https:\/\/twitter.com\/0xfoobar\" target=\"_blank\" rel=\"noopener\">@0xfoobar<\/a> confirmed that \u201cthe attacker is stealing both native tokens (SOL) and SPL tokens (USDC)\u2026 affecting wallets that have been inactive for less than 6 months.\u201d<\/p>\n<p>The attack has compromised other wallets including Phantom, Slope and TrustWallet. Initial <a href=\"https:\/\/twitter.com\/osec_io\/status\/1554657006736543744?s=21&#038;t=6vsxch_9osEBfRnqzcqfSA\" target=\"_blank\" rel=\"noopener\">reports<\/a> suggested Solflare users were also impacted, but the company tells TechCrunch it has not been affected by this exploit. Wallets drained should be treated as compromised and abandoned, Solana warned as it encouraged users to switch to hardware or \u201ccold\u201d wallets.<\/p>\n<p>Phantom, a fast-growing Solana-based wallet that<a href=\"https:\/\/techcrunch.com\/2022\/01\/31\/paradigm-invests-in-solana-wallet-app-phantom-at-1-2-billion-valuation\/\" target=\"_blank\" rel=\"noopener\"> hit $1.2 billion in valuation<\/a> in January, <a href=\"https:\/\/twitter.com\/phantom\/status\/1554626111535026177\" target=\"_blank\" rel=\"noopener\">said<\/a> hours after the hack that it \u201cdoes not believe this is a Phantom-specific issue.\u201d<\/p>\n<p>The wallet developer later said it \u201chas reason to believe that the reported exploits are due to complications related to importing accounts to and from Slope Finance. We are still actively working to identify whether there may have been other vulnerabilities that contributed to this incident.\u201d<\/p>\n<p>Slope added that it is \u201cactively working to sort out the issue as rapidly as possible and rectify best we can\u201d, while non-fungible token (<a href=\"https:\/\/techcrunch.com\/tag\/nfts\/\">NFT<\/a>) marketplace Magic Eden called on users to revoke permissions for any suspicious links in their Phantom wallets.<\/p>\n<p>The cause of the attack remains unclear, but industry leaders including Emin G\u00fcn Sirer, founder of another popular blockchain Avalanche, <a href=\"https:\/\/twitter.com\/el33th4xor\/status\/1554656344036126720\" target=\"_blank\" rel=\"noopener\">pointed out<\/a> that the transactions were properly signed, which means the vulnerability could be a \u201csupply chain attack\u201d that manages to steal users\u2019 private keys. @0xfoobar added that \u201cit\u2019s likely something has caused widespread private key compromise\u201d, and warned that revoking wallet approvals will probably not help.<\/p>\n<p>Solana spokesperson Chris Kraeuter declined to answer our questions but referred us to Solana\u2019s Status Twitter account, which states that the issue does not appear to be a bug in Solana\u2019s software\u00a0\u201cbut in software used by several software wallets popular among users of the network.\u201d The company added that its\u00a0engineers\u00a0\u201care currently working with multiple security researchers and ecosystem teams to identify the root cause of the exploit, which is unknown at this time.\u201d<\/p>\n<p>The Solana attack comes just hours after malicious actors <a href=\"https:\/\/techcrunch.com\/2022\/08\/02\/nomad-chaotic-exploit-crypto\/\">abused<\/a> a \u201cchaotic\u201d security exploit to steal almost $200 million in digital assets from cross-chain messaging protocol Nomad. The \u201cfree-for-all\u201d attack, which saw more than 41 addresses drain $152 million \u2014 80% of the stolen funds \u2014 was made possible by a recent update to one of Nomad\u2019s smart contracts that made it easy for users to spoof transactions.<\/p>\n<p><em>Updated with comments from Solana and Phantom\u00a0<\/em><\/p>\n<\/p><\/div>\n<p><\/br><\/br><\/br><\/p>\n<p>Tech, Technology<\/br><br \/>\n<\/br><br \/>\nSource:<a href=\"https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/\">https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/<\/a><\/br><\/br><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Source:https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/ Thousands of Solana wallets drained in multimillion-dollar exploit 2023-01-20 22:23:51 Solana, an increasingly popular blockchain known for its speedy transactions, has become the target of the crypto sphere\u2019s latest hack after users reported that\u00a0funds have been drained from internet-connected \u201chot\u201d wallets. An unknown actor drained funds from approximately 8,000 wallets on the Solana network, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":15861,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","om_disable_all_campaigns":false,"pagelayer_contact_templates":[],"_pagelayer_content":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[17,8],"tags":[],"class_list":["post-15860","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tech","category-technology"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds\" \/>\n<meta property=\"og:description\" content=\"Source:https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/ Thousands of Solana wallets drained in multimillion-dollar exploit 2023-01-20 22:23:51 Solana, an increasingly popular blockchain known for its speedy transactions, has become the target of the crypto sphere\u2019s latest hack after users reported that\u00a0funds have been drained from internet-connected \u201chot\u201d wallets. An unknown actor drained funds from approximately 8,000 wallets on the Solana network, [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/\" \/>\n<meta property=\"og:site_name\" content=\"Science and Nerds\" \/>\n<meta property=\"article:published_time\" content=\"2023-01-20T22:23:51+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-01-20T22:23:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"399\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/\",\"url\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/\",\"name\":\"Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds\",\"isPartOf\":{\"@id\":\"https:\/\/scienceandnerds.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1\",\"datePublished\":\"2023-01-20T22:23:51+00:00\",\"dateModified\":\"2023-01-20T22:23:52+00:00\",\"author\":{\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\"},\"breadcrumb\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1\",\"width\":600,\"height\":399},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/scienceandnerds.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Thousands of Solana wallets drained in multimillion-dollar exploit\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/scienceandnerds.com\/#website\",\"url\":\"https:\/\/scienceandnerds.com\/\",\"name\":\"Science and Nerds\",\"description\":\"My WordPress Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/scienceandnerds.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\/\/scienceandnerds.com\"],\"url\":\"https:\/\/scienceandnerds.com\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/","og_locale":"en_US","og_type":"article","og_title":"Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds","og_description":"Source:https:\/\/techcrunch.com\/2022\/08\/03\/solana-wallet-hack\/ Thousands of Solana wallets drained in multimillion-dollar exploit 2023-01-20 22:23:51 Solana, an increasingly popular blockchain known for its speedy transactions, has become the target of the crypto sphere\u2019s latest hack after users reported that\u00a0funds have been drained from internet-connected \u201chot\u201d wallets. An unknown actor drained funds from approximately 8,000 wallets on the Solana network, [&hellip;]","og_url":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/","og_site_name":"Science and Nerds","article_published_time":"2023-01-20T22:23:51+00:00","article_modified_time":"2023-01-20T22:23:52+00:00","og_image":[{"width":600,"height":399,"url":"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/","url":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/","name":"Thousands of Solana wallets drained in multimillion-dollar exploit - Science and Nerds","isPartOf":{"@id":"https:\/\/scienceandnerds.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage"},"image":{"@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1","datePublished":"2023-01-20T22:23:51+00:00","dateModified":"2023-01-20T22:23:52+00:00","author":{"@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e"},"breadcrumb":{"@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#primaryimage","url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1","contentUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1","width":600,"height":399},{"@type":"BreadcrumbList","@id":"https:\/\/scienceandnerds.com\/2023\/01\/20\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/scienceandnerds.com\/"},{"@type":"ListItem","position":2,"name":"Thousands of Solana wallets drained in multimillion-dollar exploit"}]},{"@type":"WebSite","@id":"https:\/\/scienceandnerds.com\/#website","url":"https:\/\/scienceandnerds.com\/","name":"Science and Nerds","description":"My WordPress Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/scienceandnerds.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/scienceandnerds.com"],"url":"https:\/\/scienceandnerds.com\/author\/admin\/"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/01\/thousands-of-solana-wallets-drained-in-multimillion-dollar-exploit_63cb1477c29ba.jpeg?fit=600%2C399&ssl=1","_links":{"self":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/15860"}],"collection":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/comments?post=15860"}],"version-history":[{"count":1,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/15860\/revisions"}],"predecessor-version":[{"id":15862,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/15860\/revisions\/15862"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media\/15861"}],"wp:attachment":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media?parent=15860"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/categories?post=15860"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/tags?post=15860"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}