The massive Solana wallet exploit that began on Wednesday Hong Kong time is believed to be related to the Slope mobile wallet app, while there is no evidence to show the blockchain’s code was compromised, Solana said.

See related article:  Bitcoin, Ethereum little changed; Solana still lower after network hack

Fast facts

  • “Private key information was inadvertently transmitted to an application monitoring service,” Solana said on its verified Twitter account. It is still investigating the details of exactly how the exploit was put into action, Solana added.
  • The exploit is currently isolated in a wallet on Solana, and Slope’s hardware wallets remain secure, Solana said.
  • In a statement issued ahead of Solana, Slope admitted that some of its wallets were breached.
  • “We are actively conducting internal investigations and audits, working with top external security and audit groups,” Slope said in the statement.
  • Another Solana-based popular wallet project Phantom also said it believes the exploit was due to importing accounts to and from Slope, and Phantom is finding other possible exploits. 
  • According to blockchain explorer Solscan, four wallets were flagged as related to the exploit with attackers stealing US$4.46 million worth of cryptocurrency from about 8,000 unique wallets.

See related article: Solana hack affects over 7,000 Phantom, Slope wallets