Following yesterday’s attack on the Solana ecosystem, information is now emerging suggesting wallet provider Slope is primarily to blame for the security flaw that allowed thousands of Solana customers to have their cryptocurrency stolen. Slope is a layer-1 (L1) Web3 wallet service for the Solana blockchain…
Following yesterday’s attack on the Solana ecosystem, information is now emerging suggesting wallet provider Slope is primarily to blame for the security flaw that allowed thousands of Solana customers to have their cryptocurrency stolen. Slope is a layer-1 (L1) Web3 wallet service for the Solana blockchain… Read More
Key Takeaways Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet. Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future. Full details of the attack are still under investigation. Share this article URL Copied The…
Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet.
Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future.
Full details of the attack are still under investigation.
Share this article
URL Copied
The Solana Foundation and Slope have provided additional information on a security breach that affected thousands of wallets today.
Solana Confirms Wallet Breach
The Solana Foundation has published new details about today’s attack.
Earlier, nearly 8,000 addresses were drained through what was believed to be a breach of the third-party wallet app Slope.
This afternoon, the Solana Foundation confirmed on the Solana Status Twitter account that the addresses affected by the attack “were at one point created, imported, or used in Slope mobile wallet applications.”
It added that private key information was accidentally transmitted to an application monitoring service. It said that further details “are still under investigation.”
The attack only affected Slope’s downloadable wallet app; Slope hardware wallets are still secure. Though thousands of wallets were drained, the Solana Foundation added that the Solana protocol itself remains secure.
Slope also commented on the situation. It said that a “cohort” of Slope wallets were compromised and confirmed that several of its own staff wallets were drained.
Slope said that it had not confirmed the nature of the attack. “We have some hypotheses as to the nature of the breach, but nothing is yet firm,” Slope said in its official statement. It committed to publishing a full post-mortem in the future.
The company also suggested that users take action to secure their funds. It advised users to create a new seed phrase and wallet and transfer their funds to that wallet.
Both companies say that they are performing internal investigations and working with external auditors.
Various other individuals within the Solana ecosystem provided information and speculated on the attack earlier today.
At least two other projects in the Solana ecosystem have been hacked this year. Cashio was hacked for $28 million in March, while Wormhole was hacked for $322 million in February.
Disclosure: At the time of writing, the author of this piece owned BTC, ETH, and other cryptocurrencies.
Share this article
URL Copied
The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.
You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.
See full terms and conditions.
Recommended News
Almost 8,000 Solana Wallets Drained in Suspected “Supply Chain” Ex…
Analysis
At least 7,767 Solana wallets have been affected. Hackers Target Solana Users Hackers have drained thousands of Solana wallets in an ongoing attack. Engineers from multiple ecosystems, with the help…
Solana Opens First Physical Store in New York City
Business
A Solana store opened in New York City today; it’s the first crypto store of its kind. A Physical Web3 Store Solana has opened a store in the real world….
Solana Unveils Web3 Mobile Phone
Business
Solana is planning to release a mobile phone, marking one of the industry’s first attempts to grow Web3 technology beyond the desktop. Included in the phone will be a dApp…
Security is more than a threat mitigator — it’s a growth enabler too. Catch up with this VB On-Demand event to learn how an automated security and compliance improves your security posture, helps meet SOC 2, HIPAA, or ISO 27001 regulations, gets you compliant fast, and more.
Watch free on demand here.
Cyber criminals are getting smarter, their attacks are continuously evolving, and their successes are leaving marks. Assaults are scaled effortlessly, from the one-to-one text phishing attempts on employees who post about new jobs on LinkedIn, to the “unprecedented” campaign against the Costa Rican government that brought much of their infrastructure to a standstill, resulting in losses of $125 million over 48 hours.
“What’s notable is the sophistication,” says Kaitlin Pettersen, VP of customer experience at Vanta. “The seeming legitimacy is improving. They’re getting smarter. They’re getting more strategic, and the financial and reputational cost of these data breaches is high.”
Customer trust is easily lost, but not easily won back — and that directly impacts your bottom line. Globally, fines for GDPR violations are huge, but smaller companies are also facing financial consequences for violations. The CCPA in California opens the door to lawsuits from customers whose data was involv