Login to comment
"This does not appear to be a bug with Solana core code,” it added, “but in software used by several software wallets popular among users of the network.”— Just Ask Jesse (@JustAskJesse) August 3, 2022
Likely a key compromise.
This could happen on any chain.
And yes, a key compromise f s your Hex.https://t.co/ZZGBbuDEYm
Solana Wallets Targeted in Latest Multimillion Dollar Hack https://t.co/SujUA1gVk9— Brad B (@BradBeatty11) August 3, 2022
#Solana Wallets Targeted in Latest Multimillion-Dollar Hack— BULLZILLA (@CKJCryptonews) August 3, 2022
Engineers across several networks have found that the bug💥 isn't 💥 connected with #Solana core code, but in software used by several software wallets, according to a tweet by SolanaStatus.https://t.co/0aSFMiEXSD
https://t.co/T9hz4gOdF6— Hakuna_Matata (@Hakuna_RISER) August 3, 2022
Never click links. Always type them in.
Never connect to contracts you are sure if. If you do, learn how to cancel permissions. (Revoke - Check out @EverRise #EverRevoke)
Always assume DMs are scams.
Never act on email links you get. Go to real site.
It’s events like this that worries me about using all crypto as collateral as black swan events (that are regular events now) turn us into a fractional reserve bank accidentally without licensing - Solana Wallets Targeted in Latest Multimillion Dollar Hack https://t.co/FcRDGpwQl5— Simon Dixon (Beware Impersonators) (@SimonDixonTwitt) August 3, 2022
BREAKING: The #Solana Wallet is being targeted in the latest malware attack worth millions. As of now, over 8,000 internet-connected "hot" wallets have been compromised, but the source of the attack remains unknown.https://t.co/gOsKtMLEB8— Visit DogeBNB.org today, #lowcapgem, #BNBChain 💎 (@DogeBNBorg) August 3, 2022
Not #Dogecoin related, but I know there are many #Solana holders (sadly) among shibes.— Mishaboar (@mishaboar) August 3, 2022
Be careful - according to Coindesk, the "exploit is targeting unsuspecting Phantom users with loose wallet permissions".
⚡️ @Solana $SOL network has been hacked with 8,000 wallets compromised & $5M stolen#Solana has been hacked leading to the theft of $5M worth of $SOL, $USDC, and other tokens from @Phantom, @TrustWallet $TWT & @Slope_finance hot wallets.— 🇺🇦 CryptoDep #StandWithUkraine 🇺🇦 (@Crypto_Dep) August 3, 2022
👉 https://t.co/eTljXG7MFg pic.twitter.com/xRogpwzbeQ
You all know what I think about #SOL diba???— Coach Miranda Miner (@MiningMiranda) August 3, 2022
Attack is ongoing ha! The attack is still ongoing, and over 8,000 wallets have been compromised thus far according to blockchain auditors OtterSec. https://t.co/Nrugh7k0D4 pic.twitter.com/8SC7H52mbk
NEW: A handful of #crypto platforms have been hacked over the last 24 hours, resulting in millions of dollars in stolen funds, a day after a brazen attack on the platform #Nomad nearly emptied its coffers - @jgreigj https://t.co/twzmHp1T1U— The Record by Recorded Future (@TheRecord_Media) August 3, 2022
Attack on solana hot wallets ongoing. Nearly 8k wallets drained of ~$5.2 million in SOL & USDC so far, says @elliptic. Latest on what we do/don't know, as of now: https://t.co/KaTjAiuy7w @Ryan_Browne_— MacKenzie Sigalos (@KenzieSigalos) August 3, 2022
Ongoing solana attack targets thousands of crypto wallets, costing users more than $5 million so far https://t.co/OmIKcMBXyF— CNBC (@CNBC) August 3, 2022
10/ It turns out that during a routine upgrade, the Nomad team initialized the trusted root to be 0x00. To be clear, using zero values as initialization values is a common practice. Unfortunately, in this case it had a tiny side effect of auto-proving every message pic.twitter.com/fA3XbNW9qT— samczsun (@samczsun) August 2, 2022
An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.— Solana Status (@SolanaStatus) August 3, 2022
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension.
1/ Nomad’s bridge got owned in a similar manner to Qubit’s QBridge. An insecure configuration of the bridge caused a specific path to allow any transaction sent. The error is inside the Replica’s “process” function.— mattgleason.eth (@mg_486662) August 2, 2022
This is an ongoing attack, so stay tuned for updates on this one. The attackers are continuing to transfer funds out of various wallets as we speak, and it doesn't seem the source of the exploit has been identified.— web3 is going just great (@web3isgreat) August 3, 2022
There’s no evidence hardware wallets have been impacted – and users are strongly encouraged to use hardware wallets.— Solana Status (@SolanaStatus) August 3, 2022
Do not reuse your seed phrase on a hardware wallet - create a new seed phrase.
Wallets drained should be treated as compromised, and abandoned.
1/ It all started when a few people started to notice some unusual outflows from Phantom wallets on Solana. https://t.co/HdIxSS5uBO— Miles Deutscher (@milesdeutscher) August 3, 2022
Sorry you lost your LIFE SAVINGS. Growing pains. https://t.co/Lm5ZN6lpfM— Jacob Silverman (@SilvermanJacob) August 3, 2022
Massive exploit/drain going on with Solana seeing it live in Taiyo tons of people losing their whole balance out of no where.— Tom 《TYR》 (@SolportTom) August 2, 2022
Move everything to a ledger NOW.
Two wallets reported:
npm install scripts seems like the biggest crypto hot-wallet attack vector on the web. 😬— Matt DesLauriers (@mattdesl) April 25, 2022
Don’t worry, Jump Crypto will foot the bill again.— Cas “Big 12 Auditor” Piancey (@CasPiancey) August 3, 2022
Unaffected by the $SOL exploit due to draining my own wallet using good old fashion shit trading at Mango months back.— ant (@ThisIsNuse) August 3, 2022
Big news - @Solana hack!— CIA Officer (@officer_cia) August 2, 2022
In an unknown way scammers are withdrawing $SOL from the wallets of ordinary users right now!
The amount of stolen funds currently exceeds $5 million. I recommend unlinking your wallet from all sites so they don't have access to your assets! pic.twitter.com/NVI5ULeCdB
Android seems to be affected as well. All the confirmed stories so far have had the key imported or generated on mobile. Most of the reports are slope, but a few phantom users as well.— SMS aey.sol, 🇺🇸 (@aeyakovenko) August 3, 2022
Insider told me what happened (Solana has a pretty good guess), announcement should be coming soon. They are still narrowing down whether it was Slope *and* Phantom or just Slope that was leaking crucial data to a certain integration accidentally. ETA a couple hours.— FatMan (@FatManTerra) August 3, 2022
Nomad bridge getting actively hacked. WETH and WBTC being taken out in million-dollar increments. Withdraw all funds if you can, still $126m remaining in the contract that's likely at risk pic.twitter.com/oDo7oT1glW— foobar (@0xfoobar) August 1, 2022
Imagine if you got a message like this about your USD checking account (and if you didn't get this message you'd be in trouble). Anyway, Solana, an industry darling, seems to be experiencing a major hack. Many magic tokens lost. https://t.co/TAT2Pu6AK1— Jacob Silverman (@SilvermanJacob) August 3, 2022
There's an unknown $SOL exploit currently draining random Phantom wallets right now. ⚠️— Miles Deutscher (@milesdeutscher) August 3, 2022
$6m currently stolen.
If you have funds on Phantom, make sure to revoke all permissions + move to a hardware wallet.
Still seems to be a lot of unknowns on this exploit. Nothing concrete on the exact cause yet. Most roads are leading to those who had mobile wallets (Phantom or Slope).— S◎L Big Brain (33.3%) (@SOLBigBrain) August 3, 2022
I have used zero mobile wallets and so far all wallets appear safe.
Anybody drained while never using mobile?
Messages popping up in public Discord servers of random people grabbing $3K-$20K from the Nomad bridge - all one had to do was copy the first hacker's transaction and change the address, then hit send through Etherscan. In true crypto fashion - the first decentralized robbery. https://t.co/jWV9AamBer— FatMan (@FatManTerra) August 2, 2022
The SOL hack is a good reminder that by the time all problems with blockchain currencies get patched, the resulting financial system will be as complex and as regulated as traditional finance. Therefore I recommend focusing on iterative upgrades to the traditional finance system.— Liron Shapira (@liron) August 3, 2022
We highly suggest you to take steps to protect yourself in the best way we can recommend right now— Magic Ethen 🪄 (@MagicEden) August 3, 2022
We'll keep you guys updated with anything significant we may find during our investigation
Stay strong 🫂💜https://t.co/A9vbjdclKD
Engineers from multiple ecosystems, with the help of several security firms, are investigating drained wallets on Solana. There is no evidence hardware wallets are impacted.— Solana Status (@SolanaStatus) August 3, 2022
This thread will be updated as new information becomes available.
1/ this solana/USDC hack situation is nuts:— Spencer Dailey (@SpencerDailey) August 3, 2022
it's a worst case scenario (thousands of wallets hacked for no apparent reason after 15+ hours) and... SOL is only down 4% over 24 hours. Markets are completely broken https://t.co/I2VljHKcL0 https://t.co/WSveFqMyHf
My heart goes out to #Solana community members who lost their life savings in the ongoing attack.— Sandeep | Polygon 💜🔝3️⃣ (@sandeepnailwal) August 3, 2022
Stay strong, these are the growing pains the entire blockchain industry has to go through.
These moments, if handled correctly, lead to a lot of strength for any ecosystem.🖖
There have been 3 big crypto hacks/breaches/thefts so far this month. And it's only August 3. https://t.co/UdbG0NW7Kp— Steve Kovach (@stevekovach) August 3, 2022
Update: We are working around the clock to address the situation and have notified law enforcement and retained leading firms for blockchain intelligence and forensics. Our goal is to identify the accounts involved and to trace and recover the funds.— Nomad (⤭⛓🏛) (@nomadxyz_) August 2, 2022
I don’t mean to dwell on this Solana key theft issue, because I don’t specifically care about Solana, but I feel like this might be the tip of a much bigger iceberg re: wallet security. https://t.co/7ViAm1lGHm— Matthew Green (@matthew_d_green) August 3, 2022
We’re aware of impersonators posing as Nomad and providing fraudulent addresses to collect funds. We aren’t yet providing instructions to return bridge funds. Disregard comms from all channels other than Nomad’s official channel: @nomadxyz_— Nomad (⤭⛓🏛) (@nomadxyz_) August 2, 2022
Two important lessons:— Dmitriy Gerasimov (@naeper) August 3, 2022
- Solana was written on Rust that's positioned as secure language. Language itself doesn't provide high security. That's why we've selected C language.
- Most probable cause is supply chain attack. That's why Cellframe almost has no 3rd party components https://t.co/4FWlieKj5U
Ongoing Exploit of @solana $SOL Hot wallets: More than 8,000 wallets drained— TOP 7 ICO | #StandWithUkraine🇺🇦 (@top7ico) August 3, 2022
Funds have been drained without users knowledge from major internet-connected hot wallets including @phantom, @slope_finance and @TrustWallet.
👉 https://t.co/BQs9ZvoT9x pic.twitter.com/3GTJ8kDNqw
🚨 Widespread Solana private key compromise 🚨— foobar (@0xfoobar) August 3, 2022
- attacker is stealing both native tokens (SOL) and SPL tokens (USDC)
- affecting wallets that have been inactive for >6 months
- both Phantom & Slope wallets reportedly drained pic.twitter.com/AkZXOGLD0Q
We have noticed the ongoing #Solana wallets exploit. Users can be reassured that their $SOL assets with #KuCoin are safe.— Johnny_KuCoin (@lyu_johnny) August 3, 2022
We’re in close contact with the Solana team and have blocked the suspicious addresses as requested. Still checking other ways to help.
Stay Safe! 🙏
There is an active security incident on Solana. Many (7000+ and counting) wallets are drained of SOL & USDC. Don't know root cause yet. Maybe permissions granted to apps. For remediation, send the funds to a cold wallet or CEX like @Binance. https://t.co/nQrBXAgCbf— CZ 🔶 Binance (@cz_binance) August 3, 2022
We are working closely with other teams to get to the bottom of a reported vulnerability in the Solana ecosystem. At this time, the team does not believe this is a Phantom-specific issue.— Phantom (@phantom) August 3, 2022
As soon as we gather more information, we will issue an update.
Following last night's exploit of the Nomad Bridge, an estimated $2B has been stolen from cross-chain bridges so far in 2022. Read our blog to learn what makes these protocols vulnerable and what the industry can do about it. https://t.co/WLo62H6NFe pic.twitter.com/CZRnqrPikh— Chainalysis (@chainalysis) August 2, 2022
This does not appear to be a bug with Solana core code, but in software used by several software wallets popular among users of the network.— Solana Status (@SolanaStatus) August 3, 2022
Updates will be posted to https://t.co/ivyoIbdCDP as they become available. 2/2
🚨🚨🚨There seems to be a widespread SOL exploit at play that's draining wallets throughout the ecosystem— Magic Ethen 🪄 (@MagicEden) August 3, 2022
Here's what you can do right now to best protect yourself
1. Go to >Settings on your @phantom wallet
2. >Trusted Apps
3. >Revoke Permissions for any suspicious links
Just had my USDC drained AMA🙁— Justin.sol (@JustinBarlow) August 3, 2022
Another day, another hack...— Coin Bureau (guy.eth) (@coinbureau) August 3, 2022
Seems to be an ongoing attack on Solana affecting hot wallets. Doesn't appear to be about dApp permissions either so revoking won't help.
If you are using a $SOL web wallet, best to transfer those funds to a hardware device for the time being 🙏 https://t.co/0pjYlVTyvD
1/ Nomad just got drained for over $150M in one of the most chaotic hacks that Web3 has ever seen. How exactly did this happen, and what was the root cause? Allow me to take you behind the scenes 👇 pic.twitter.com/Y7Q3fZ7ezm— samczsun (@samczsun) August 1, 2022
Solana wallets are being drained on mass right now!— Justin Bons (@Justin_Bons) August 3, 2022
As part of what looks like a private key exploit!
I have been warning people about the reckless behavior of SOL for years
This is a consequence of that behavior
If you are affected follow this advice:https://t.co/L6m0krg8fW
Is there a post-mortem on the Solana wallet draining thing anywhere yet— Cobie (@cobie) August 3, 2022
1/ Some thoughts about smart contract security. What went wrong? Can we do better? How to do better?— Bryan Chen (@XiliangChen) August 2, 2022
TLDR; we need better redundancy.
This has been a bad week for exploits.— Haseeb Qureshi (@hosseeb) August 3, 2022
Active attack right now on Solana—no one knows yet where it's coming from. Revoke permissions ASAP (or just move assets to a Ledger). https://t.co/I5FympDlcM
Sadly, the answer can be found directly in the Nomad audit report. Reminiscent of the Rune hack where the vulnerable function had a code comment above it explaining how to exploit it.— foobar (@0xfoobar) August 2, 2022
Audit report here: https://t.co/nJjstCL58h pic.twitter.com/V508zWStAa
We are aware of the incident involving the Nomad token bridge. We are currently investigating and will provide updates when we have them.— Nomad (⤭⛓🏛) (@nomadxyz_) August 1, 2022
Seems like an iOS supply chain attack. Multiple plausible wallets that only received sol and had no interactions beyond receiving have been affected. https://t.co/ne0g3ZmLH5— SMS aey.sol, 🇺🇸 (@aeyakovenko) August 3, 2022
As well as key that were imported into iOS, and generated externally.https://t.co/hStAr1mU6Q
#PeckShieldAlert The widespread hack on Solana wallets is likely due to the supply chain issue exploited to steal/uncover user private keys behind affects wallets. So far, the loss is estimated to be $8M, excluding one illiquid shitcoin (only has 30 holds & maybe misvalued $570M) pic.twitter.com/aTGNsTc6d8— PeckShieldAlert (@PeckShieldAlert) August 3, 2022
Engineers from across several ecosystems, in conjunction with audit and security firms, continue to investigate the root cause of an incident that resulted in approximately 8,000 wallets being drained. 1/2— Solana Status (@SolanaStatus) August 3, 2022
$2 billion have been stolen from cross-chain bridges this year only...— Chris Zaknun (@czdaomaker) August 3, 2022
Not a single major VC cared for @chain_port
The only custodial bridge!
+ every company owns their multisig
Meaning , if hacker manages to hack 1 token they dont get the others.https://t.co/QrWFog5BUQ
🟥 @chainalysis ‘s estimation in stolen #cryptocurrency is around $2 billion💰🟥— Blockchain-888 (@Blockchain888_) August 3, 2022
After the hack of the Nomad Bridge, 69% of total funds were stolen so far this year. #Nomadhack #cryptomarket #blockchain #technology #hack #Hackers https://t.co/xfzGciGF9L
Login to comment