The Solana team’s investigation into the breaches of thousands of cryptocurrency wallets found that the affected addresses were “created, imported or used in Slope’s mobile apps at some point.”
Before that, Solana developers reportedThe attack was not caused by a bug in the code underlying the blockchain, but rather by software used by “several popular wallets”.
Anatoly Yakovenko, co-founder of Solana Labs, wrote that anyone who quotes a seed phrase to Slope might think it put him in danger.
Slope said in a statement that a number of project wallets had been compromised and the team was actively investigating the incident. The developers “have several hypotheses”, but did not specify the specific reason for the attack.
Slope encouraged all users to create new wallets with other seed phrases and transfer their assets to them.
Representatives of the Phantom project, whose customers were also affected, said they “had reason to believe” that the discovered exploit was related to Slope. They advised users to transfer assets to new wallets of other providers.
Some experts state that Slope was able to store user seed words on its central servers, which were later compromised by attackers.
A spokesperson for Slope told CoinDesk that the team “does not store any personal data on a centralized server.” However, he later said that this statement was false.
Solana stressed that the investigation continues.
Recall that in early August, unknown persons accessed the funds of about 8,000 Solana-based wallet holders and millions of dollars were withdrawn.
Read ForkLog bitcoin news in our Telegram – cryptocurrency news, courses and analysis.