By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
Sign In
Web3,Blockchain & Metaverse Education Media PlatformWeb3,Blockchain & Metaverse Education Media Platform
  • Home
  • News
    • Cryptopedia
      • Blockchain News
      • Bitcoin News
      • Ethereum News
      • Altcoin News
    • Latest Metaverse & NFT News
      • Metaverse & NFT Games
      • Virtual Land
    • Exchanges News
    • Policy & Regulation
    • Web Stories
  • Press Release
    • Sponsored Article
    • Submit Press Release
  • Interviews
    • Opinion
  • Expert Alliance
    • About Expert Alliance
    • Expert Alliance Benefits
    • Experts List
    • Apply for Expert Alliance
  • Guide
    • NFT Review
    • Game Review
    • Submit NFT Project
  • Videos
  • Events
Search
  • Advertise with us
  • Media Kit
  • 365 Media Plan
  • Submit Press Release
  • Submit NFT Project
© 2022 NFTStudio24.com News Network. All Rights Reserved.
Reading: Hackers attack Solana ecosystem, 7,000+ wallets compromised
Share
Web3,Blockchain & Metaverse Education Media PlatformWeb3,Blockchain & Metaverse Education Media Platform
Search
  • Home
  • News
    • Cryptopedia
    • Latest Metaverse & NFT News
    • Exchanges News
    • Policy & Regulation
    • Web Stories
  • Press Release
    • Sponsored Article
    • Submit Press Release
  • Interviews
    • Opinion
  • Expert Alliance
    • About Expert Alliance
    • Expert Alliance Benefits
    • Experts List
    • Apply for Expert Alliance
  • Guide
    • NFT Review
    • Game Review
    • Submit NFT Project
  • Videos
  • Events
Have an existing account? Sign In
Follow US
  • About us
  • Advertise with us
  • Media Kit
  • 365 Media Plan
  • Submit NFT Project
  • Careers
  • Contact us
  • Privacy Policy
© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.
  • Global
  • Japan
  • South Asia
  • Partners
  • Community
HOME > News > CRYPTOPEDIA > BITCOIN NEWS > Hackers attack Solana ecosystem, 7,000+ wallets compromised
BITCOIN NEWSNews

Hackers attack Solana ecosystem, 7,000+ wallets compromised

news room
Posted news room August 3, 2022 887 Views 5 Min Read
Updated 2022/08/04 at 3:09 PM
Hackers attack Solana 1
SHARE

Solana’s ecosystem is currently under attack with 7,767 wallets, mostly private keys, compromised. The Solana team has gathered engineers from different ecosystems to find the root cause of the attack as the Solana community mourns over their hard-earned SOL & USDC losses.

Contents
Hackers steal private keys to drain out SOL & USDCHow can private key wallet users save themselves?Solana (SOL) prices pummel down

Just when the Web3 market was showing good signs for August, the month began with two heists within 3 days. First, Nomad’s cross-chain bridge got hacked, causing a $190M loss to the users. The protocol is still investigating the case with the law enforcement agencies to crack down on the hackers and trace back the stolen funds. 

Today, the Solana community was hit with a big attack on its ecosystem. The hackers managed to find a loophole and are currently draining out thousands of dollars from private key wallets in the span of minutes.

Insert tweet:

There's an ongoing attack targeting the Solana ecosystem right now. 7000+ wallets affected, and rising at 20/min. Because it's very early and the attack is ongoing, there's a lot of misinformation and speculation. So here are a few thoughts and clarifications.

— Emin Gün Sirer🔺 (@el33th4xor) August 3, 2022
Emin Gün Sirer

Hackers steal private keys to drain out SOL & USDC

According to Emin Gün Sirer, co-founder of Ava Labs, the hackers seem to have targeted the private key wallets of various users that have remained inactive for less than 6 months but also freshly made crypto wallets.


The attackers are continuously draining out Solana token (SOL) and SPL token (USDC). As of now, $5,000,000 worth of digital assets has been stolen in the Solana ecosystem hack.

Sirer explained that the hackers seem to be using the same pattern as the one with IOTA, which the team never managed to recover. This could mean a bad sign for the Solana community as well.

Sirer said the hackers might have gotten access to private keys, “One possible route is a “supply chain attack” where a JS library is hacked, and it exfiltrates (steals) users’ private keys. Affected wallets seem to have been created in the last ~9 months, but there are reports of freshly created wallets also being affected.”

User @0xfoobar says both Phantom & Slope wallets are reportedly drained out completely of SOL and USDC. The user believes it’s an upstream dependency supply chain attack.

Prior to the report, the Phantom team updated its community about the attack. Insert tweet:

We are working closely with other teams to get to the bottom of a reported vulnerability in the Solana ecosystem. At this time, the team does not believe this is a Phantom-specific issue.

As soon as we gather more information, we will issue an update.

— Phantom (@phantom) August 3, 2022
Phantom

As of now, the Solana team is still trying to stop the attackers from draining wallets. Many people believe the chain should be paused but that wouldn’t make any difference as once the chain resumes, the hackers will also continue with their heist.


Sirer believes that a potential nonce reuse bug might be the loophole that gave hackers access to the private keys. This type of bug gives attackers a chance to use a nonce, the one used in signature generation in private keys, to access the wallet. However, @SolanaStatus shared that engineers are still looking for the root cause of the attack.

Insert tweet:

Engineers from multiple ecosystems, with the help of several security firms, are investigating drained wallets on Solana. There is no evidence hardware wallets are impacted.

This thread will be updated as new information becomes available.

— Solana Status (@SolanaStatus) August 3, 2022
Solana Status

Compared to private key wallets, the users who have Solana assets in hardware wallets and CEXes seem to be safe from this attack.

How can private key wallet users save themselves?

Since private key wallets don’t have any third-party involvement for approvals, all the transfers made from these wallets are signed by users. So, no one can really save the wallets from draining except the owner.

@0xfoobar suggests that the best way for private key wallets to save themselves is to transfer their funds to another wallet that has never exposed its private key on a browser extension, i.e., hardware wallets.

Solana Status updated its users that currently no hardware wallets have been drained although there is no evidence of this claim and advised, “Do not reuse your seed phrase on a hardware wallet – create a new seed phrase.”

The Solana team has released a survey for affected wallet owners which might possibly help engineers figure out the cause of the hack.

Insert tweet:

If your wallet was one of the 7,767 impacted please complete this survey – engineers are investigating the root cause https://t.co/XvvipCMtGY

— Solana Status (@SolanaStatus) August 3, 2022
Solana Status
Solana SOL prices pummel down
Solana SOL prices pummel down

Solana (SOL) prices pummel down

As soon as the news broke out on the internet and people started reporting on their stolen assets, Solana’s native token SOL dropped drastically due to a huge sell-out and panic in the market.

Solana is trading at $38.49 at the time of writing and is expected to drop as time passes by.

Sign Up For Daily NFT Drops

Don't miss the next NFT drops!!!
I have read and agree to the terms & conditions
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
news room August 3, 2022
Share
What do you think?
Love0
Sad0
Happy0
Sleepy0
Angry0
Dead0
Wink0
Previous Article ADI to release Opaleo NFT ADI to release Opaleo NFT project for World Alzheimer’s Month
Next Article OpenSea buys opensea OpenSea buys opensea.eth for $160K
Leave a comment

Leave a Reply

You must be logged in to post a comment.

Don’t miss the NFT Drops! Sign up Now

I have read and agree to the terms & conditions

Latest News

DeFi protocol DefiLlama has resolved its internal conflicts 1
DeFi protocol DefiLlama has resolved its internal conflicts
CRYPTOPEDIA News WEB3 March 21, 2023
Crypto Fear and Greed Index has reached its highest level
Crypto Fear and Greed Index has reached its highest level
BITCOIN NEWS News March 21, 2023
Project AI Powered Trading Platform Accused of Draining 1M from Users
Project ‘AI-Powered’ Trading Platform Accused of Draining $1M from Users
AI BLOCKCHAIN NEWS News March 20, 2023
Join us
Ad imageAd image

You Might also Like

DeFi protocol DefiLlama has resolved its internal conflicts 1
CRYPTOPEDIANewsWEB3

DeFi protocol DefiLlama has resolved its internal conflicts

March 21, 2023
Crypto Fear and Greed Index has reached its highest level
BITCOIN NEWSNews

Crypto Fear and Greed Index has reached its highest level

March 21, 2023
Project AI Powered Trading Platform Accused of Draining 1M from Users
AIBLOCKCHAIN NEWSNews

Project ‘AI-Powered’ Trading Platform Accused of Draining $1M from Users

March 20, 2023
New York allows Binance Voyager deal to proceed without holdings
EXCHANGESNews

New York Judge allows Binance-Voyager deal to proceed without holdings

March 17, 2023
//

NFTStudio24 delivers the latest NFT news to its global audience. We are committed to reporting mainstream and emerging talent via exclusive press releases, podcast interviews, NFT rankings, and much more.

GET IN TOUCH

  • About us
  • Advertise with us
  • Media Kit
  • 365 Media Plan
  • Submit NFT Project
  • Careers
  • Contact us
  • Privacy Policy

Experts Alliance

  • Experts Alliance
  • About Alliance
  • Alliance Benefits
  • Membership requirements
  • Apply Alliance
//

Subscribe to our newsletter to get our newest articles instantly!

I have read and agree to the terms & conditions
Web3,Blockchain & Metaverse Education Media PlatformWeb3,Blockchain & Metaverse Education Media Platform
Follow US

© 2022 NFTStudio24.com News Network. All Rights Reserved.

Removed from reading list

Undo
Join us metaverse Join us metaverse
Welcome Back!

Sign in to your account

Register Lost your password?