Emin Gün Sirer: Solana eco-mass theft may be a 'supply chain attack'

Aug 03,2022
KingData News: Avalanche Gün Professor Emin Gün Sirer tweeted that more than 7,000 wallets have been affected in the ongoing attack on the Solana ecosystem, which is growing at a rate of 20 wallets per minute. He said that because the transactions are signed properly, it's likely that the attacker has acquired access to private keys. One possible route is a "supply chain attack" where a JS library is hacked, and it exfiltrates (steals) users' private keys. Affected wallets seem to have been created in the last 9 months, but there are reports of freshly created wallets also being affected. Stopping the chain wouldn't help, the attack would resume when the chain resumes.
On August 3, the Solana eco-wallet Phantom was suspected to have been hacked, with multiple users reporting that their funds were unknowingly depleted. This indicator provides an update on the theft of Solana wallets.