Millions Drained in Widespread Solana Wallet Exploit

  • Multiple people took to Twitter on Wednesday to report funds being drain from their Solana-based wallets, including Phantom, Slope, and TrustWallet.
  • Although it is a widespread Solana exploit, with around 8,000 wallets being compromised, its root cause remains unknown.


It appears that the Solana ecosystem has fallen victim to a widespread wallet exploit, which has resulted in funds being drained from thousands of crypto wallets, Solana users reported via Twitter on 3 August.

Multiple people have complained that their funds have been drained from their hot wallets — including Phantom, Slope, and TrustWallet — without their knowledge, with Solana Status estimating that almost 8,000 wallets were compromised in the exploit. Several Solana addresses have already been connected to the attack, , with blockchain investigator PeckShield estimating that the loss to the ecosystem was around $8 million.

Several ecosystem engineers, security firms, and Solana-based platforms have already began investigations into the exploit, which allowed the attacker to sign transactions on behalf of other users. Although it appears that this is a widespread Solana exploit, its root cause remains unknown.

Prominent crypto exchange CEOs — including OKX’s Jay Hao, Binance’s Changpeng Zhao, and KuCoin’s Johnny Lyu — noted they were in contact with the Solana team, and have blocked the suspicious addresses as requested. They also took the chance to recommend to Solana users to move their holdings to their platforms as an immediate security measure.

Related Coverage
Unibot to Compensate Users Affected by Exploit
  • Popular Telegram bot Unibot, which is used to snipe trades on Uniswap, became a victim of a token approval exploit earlier today, when it was switching to a new router.
  • After confirming the exploit, Unibot assured users that their keys and wallets were safe, and that the project will compensate all affected users.
October 31, 2023, 3:01 PM


Balancer Exploited After Giving Warning
  • DeFi protocol Balancer confirmed it was exploited almost a week after disclosing a critical vulnerability affecting several of its boosted pools.
  • The platform did its best to mitigate some of the risks but was unable to pause the affected pools, and an estimated $980,000 in DAI were stolen in an attack.
Zunami Protocol’s Stablecoin Pools Exploited, Suffers $2.1M Loss
  • DeFi yield aggregator Zunami Protocol confirmed that a hacker had attacked its “zStables” pools on Curve Finance using a price manipulation exploit.
  • Security firm PeckShield has estimated that over $2.1 million was lost during the attack, while SlowMist said it had informed Zunami of the vulnerability two months ago.