The Solana team’s investigation into the breaches of thousands of cryptocurrency wallets found that the affected addresses were “created, imported or used in Slope’s mobile apps at some point.”

After an investigation by developers, ecosystem teams, and security auditors, it was revealed that the affected addresses were created, imported, or used in Slope mobile wallet apps at some point. 1/2

— Solana Status (@SolanaStatus) August 3, 2022

Before that, Solana developers reportedThe attack was not caused by a bug in the code underlying the blockchain, but rather by software used by “several popular wallets”.

Anatoly Yakovenko, co-founder of Solana Labs, wrote that anyone who quotes a seed phrase to Slope might think it put him in danger.

If you transferred a seed phrase to slope, consider it compromised. Move all assets to a new slope-free wallet. Even though the hack hasn’t claimed these tokens yet, the statement was leaked. Just a matter of time https://t.co/pCBx8jRwcO

— SMS aey.sol, 🇺🇸 (@aeyakovenko) August 3, 2022

Slope said in a statement that a number of project wallets had been compromised and the team was actively investigating the incident. The developers “have several hypotheses”, but did not specify the specific reason for the attack.

See below for our official statement of the breach status (now published in our Tool).

We empathize with all those affected and do our best to resolve and rectify the situation.https://t.co/E9xrKbdLOy

— Slope (@slope_finance) August 3, 2022

Slope encouraged all users to create new wallets with other seed phrases and transfer their assets to them.

Representatives of the Phantom project, whose customers were also affected, said they “had reason to believe” that the discovered exploit was related to Slope. They advised users to transfer assets to new wallets of other providers.

1/ Phantom has reason to believe that the reported exploits are due to complications with importing and exporting accounts. @slope_finance.

We are still actively working to determine if there are other security vulnerabilities contributing to this incident. https://t.co/W5B19gbMJX

— ghost (@ghost) August 3, 2022

Some experts state that Slope was able to store user seed words on its central servers, which were later compromised by attackers.

Fix – Slope wallet did not send seed phrases to external partners, but may have logged them on their own central servers. Sorry for putting myself a little behind, the autopsy is still ongoing. Wait for an announcement from the team for actual confirmation.

— foobar (@0xfoobar) August 3, 2022

A spokesperson for Slope told CoinDesk that the team “does not store any personal data on a centralized server.” However, he later said that this statement was false.

Solana stressed that the investigation continues.

Recall that in early August, unknown persons accessed the funds of about 8,000 Solana-based wallet holders and millions of dollars were withdrawn.

Read ForkLog bitcoin news in our Telegram – cryptocurrency news, courses and analysis.