Hacker Steals $7 Million From Trust Wallet

Users of the Trust Wallet crypto wallet lost $7 million due to a compromised version of the 2.68 browser extension, with the company confirming the incident on December 26.

Trust Wallet Browser Extension Incident

The issue was identified in the 2.68 version of the browser extension, which was found to contain malicious code.

According to specialists, the extension transmitted wallet data to a phishing domain metrics-trustwallet.com.

Malicious Code Discovery

The vulnerability was discovered by a cybersecurity specialist known as Akinator.

According to his findings, the malicious code was used to intercept user data.

Scale of the Damage

The company confirmed that the total losses amounted to approximately $7 million.

According to the analytics service Lookonchain, the attacker has already transferred $4.2 million to crypto exchanges and exchange services.

Platforms Used to Move Funds

The funds were sent to ChangeNOW, FixedFloat, KuCoin, and HTX.

Trust Wallet and Binance Response

Binance founder and Trust Wallet owner Changpeng Zhao stated that all affected users will receive full compensation.

The company said it is finalizing the refund process and will provide instructions to users in the near future.