Unofficial findings suggest the malware may have been used in the attack.
Bybit announced it is suspending SOL deposits and withdrawals.
Solana wallets have been compromised. SOL holders in self-custody wallets, such as Phantom, Slope, Solflare and TrustWallet were urgently advised to revoke all permissions to the wallet and consider transferring the tokens to centralized exchanges (CEX) or cold wallets (where USB is required) such as Ledger including NFTs.
At the time of writing, hardware wallets (such as Ledger) were not compromised. The nodes temporarily stopped accepting new requests in an effort to slow down the attack.
Users that had their wallets compromised are advised to complete the following survey to allow engineers from multiple ecosystems to investigate the exploit:
Bybit announced it is suspending deposits and withdrawals of assets on the Solana blockchain including SOL:
"Due to the widespread exploit on @solana, #Bybit has taken steps to temporarily suspend deposit and withdrawal of assets on the Solana blockchain, including $SOL, to protect our clients.
"We will continue to monitor the situation. Thank you for your understanding and support!"
The hacker was able to sign the transactions with the users' private keys, which is suggesting a supply chain attack. Both desktop and mobile users that downloaded the wallets' extensions were compromised.
It has been that at least $8 million was stolen from over 8,000 wallets during the attack using different addresses. The reports that over $500 million was stolen are inaccurate.
There is an illiquid token that only has 30 holders and is highly overvalued (around $560 million).
The following 4 wallets have been linked to the attack:
Some of the wallets that have been compromised were inactive for several months.
How Were Solana Wallets Hacked?
According to unofficial preliminary findings, 'Luca Stealer' may have been behind the attack on Solana. A user on Twitter by the name of Matt Dagen outlines how the 'Luca Stealer' may have been involved in the hack.
The source code for an information-stealing malware coded in Rust was recently released for free on hacking forums. The malware steals stored credit card info, login credentials as well as cookies. It has been suggested that the malware was used in the attack.
The malware targets wallet browser add-ons of both cold and hot wallets including Discord tokens, Steam accounts and more.
The stealer targets a range of 'cold' cryptocurrency and 'hot' wallet browser add-ons, Steam accounts, Discord tokens, Ubisoft Play and more.
In addition, Luca captures screenshots that are saved as a png file, executes a 'whoami' and send the details to the bad actor.
Although it is not generally found in Luca according to Matt, a clipper is used to modify clipboard contents in order to hijack crypto transactions.
One notable capability typically found in other info-stealers but is not available in Luca is a clipper used to modify clipboard contents to hijack cryptocurrency transactions.
The stolen data is extracted via Discord webhooks and telegram bots (depending if the file exceeds 50MB). The program then uses Discord webhooks to send the data to the bad actor in a ZIP archive.
A summary is provided on the stolen 'loot,' allowing the attacker to estimate the value of the stolen data.
It is important to highlight these are not the official findings. The exploit is still being investigated by engineers.
Solana wallets have been compromised. SOL holders in self-custody wallets, such as Phantom, Slope, Solflare and TrustWallet were urgently advised to revoke all permissions to the wallet and consider transferring the tokens to centralized exchanges (CEX) or cold wallets (where USB is required) such as Ledger including NFTs.
At the time of writing, hardware wallets (such as Ledger) were not compromised. The nodes temporarily stopped accepting new requests in an effort to slow down the attack.
Users that had their wallets compromised are advised to complete the following survey to allow engineers from multiple ecosystems to investigate the exploit:
Bybit announced it is suspending deposits and withdrawals of assets on the Solana blockchain including SOL:
"Due to the widespread exploit on @solana, #Bybit has taken steps to temporarily suspend deposit and withdrawal of assets on the Solana blockchain, including $SOL, to protect our clients.
"We will continue to monitor the situation. Thank you for your understanding and support!"
The hacker was able to sign the transactions with the users' private keys, which is suggesting a supply chain attack. Both desktop and mobile users that downloaded the wallets' extensions were compromised.
It has been that at least $8 million was stolen from over 8,000 wallets during the attack using different addresses. The reports that over $500 million was stolen are inaccurate.
There is an illiquid token that only has 30 holders and is highly overvalued (around $560 million).
The following 4 wallets have been linked to the attack:
Some of the wallets that have been compromised were inactive for several months.
How Were Solana Wallets Hacked?
According to unofficial preliminary findings, 'Luca Stealer' may have been behind the attack on Solana. A user on Twitter by the name of Matt Dagen outlines how the 'Luca Stealer' may have been involved in the hack.
The source code for an information-stealing malware coded in Rust was recently released for free on hacking forums. The malware steals stored credit card info, login credentials as well as cookies. It has been suggested that the malware was used in the attack.
The malware targets wallet browser add-ons of both cold and hot wallets including Discord tokens, Steam accounts and more.
The stealer targets a range of 'cold' cryptocurrency and 'hot' wallet browser add-ons, Steam accounts, Discord tokens, Ubisoft Play and more.
In addition, Luca captures screenshots that are saved as a png file, executes a 'whoami' and send the details to the bad actor.
Although it is not generally found in Luca according to Matt, a clipper is used to modify clipboard contents in order to hijack crypto transactions.
One notable capability typically found in other info-stealers but is not available in Luca is a clipper used to modify clipboard contents to hijack cryptocurrency transactions.
The stolen data is extracted via Discord webhooks and telegram bots (depending if the file exceeds 50MB). The program then uses Discord webhooks to send the data to the bad actor in a ZIP archive.
A summary is provided on the stolen 'loot,' allowing the attacker to estimate the value of the stolen data.
It is important to highlight these are not the official findings. The exploit is still being investigated by engineers.
2024 US Election Results: Trump Victory Ushers In First Bitcoin-Friendly Administration
FMLS:24 | Shaping the Next Era of Financial Evolution
FMLS:24 | Shaping the Next Era of Financial Evolution
Welcome to FMLS:24 – the premier event where influential brands and leaders in trading, payments, fintech, and digital assets come together!
Join over 2,500 industry professionals, engage with 150+ expert speakers, and discover endless opportunities with 70+ top exhibitors. FMLS:24 is where senior executives and decision-makers gather to close deals, forge new partnerships, and strengthen connections with long-term clients.
Whether you’re in finance, technology, or payments, this summit is your gateway to future growth, meaningful collaborations, and industry-leading insights.
👉 Don't miss out – secure your ticket now at https://events.financemagnates.com/ZQEYy0?utm_source=youtube&utm_campaign=fmls24-awareness&utm_medium=video&RefId=MLS%3A24+Video+Promo
#fmls #fmls24 #fmevents #financemagnates #forex #payments #crypto #events #london #fintech #ai #generativeai #technology #onlinetrading #forex #investing #investors #tech
📣 Stay updated with the latest in finance and trading!
Follow FMevents across our social media platforms for news, insights, and event updates. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/showcase/financemagnates-events/
👍 Facebook: https://www.facebook.com/FinanceMagnatesEvents
📸 Instagram: https://www.instagram.com/fmevents_official
🐦 Twitter: https://twitter.com/F_M_events
🎥 TikTok: https://www.tiktok.com/@fmevents_official
▶️ YouTube: https://www.youtube.com/@FinanceMagnates_official
Don't miss out on our latest videos, interviews, and event coverage. Subscribe to our YouTube channel for more!
Welcome to FMLS:24 – the premier event where influential brands and leaders in trading, payments, fintech, and digital assets come together!
Join over 2,500 industry professionals, engage with 150+ expert speakers, and discover endless opportunities with 70+ top exhibitors. FMLS:24 is where senior executives and decision-makers gather to close deals, forge new partnerships, and strengthen connections with long-term clients.
Whether you’re in finance, technology, or payments, this summit is your gateway to future growth, meaningful collaborations, and industry-leading insights.
👉 Don't miss out – secure your ticket now at https://events.financemagnates.com/ZQEYy0?utm_source=youtube&utm_campaign=fmls24-awareness&utm_medium=video&RefId=MLS%3A24+Video+Promo
#fmls #fmls24 #fmevents #financemagnates #forex #payments #crypto #events #london #fintech #ai #generativeai #technology #onlinetrading #forex #investing #investors #tech
📣 Stay updated with the latest in finance and trading!
Follow FMevents across our social media platforms for news, insights, and event updates. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/showcase/financemagnates-events/
👍 Facebook: https://www.facebook.com/FinanceMagnatesEvents
📸 Instagram: https://www.instagram.com/fmevents_official
🐦 Twitter: https://twitter.com/F_M_events
🎥 TikTok: https://www.tiktok.com/@fmevents_official
▶️ YouTube: https://www.youtube.com/@FinanceMagnates_official
Don't miss out on our latest videos, interviews, and event coverage. Subscribe to our YouTube channel for more!
FMLS:24 | Shaping the Next Era of Financial Evolution
FMLS:24 | Shaping the Next Era of Financial Evolution
Welcome to FMLS:24 – the premier event where influential brands and leaders in trading, payments, fintech, and digital assets come together!
Join over 2,500 industry professionals, engage with 150+ expert speakers, and discover endless opportunities with 70+ top exhibitors. FMLS:24 is where senior executives and decision-makers gather to close deals, forge new partnerships, and strengthen connections with long-term clients.
Whether you’re in finance, technology, or payments, this summit is your gateway to future growth, meaningful collaborations, and industry-leading insights.
👉 Don't miss out – secure your ticket now at https://events.financemagnates.com/ZQEYy0?utm_source=youtube&utm_campaign=fmls24-awareness&utm_medium=video&RefId=MLS%3A24+Video+Promo
#fmls #fmls24 #fmevents #financemagnates #forex #payments #crypto #events #london #fintech #ai #generativeai #technology #onlinetrading #forex #investing #investors #tech
📣 Stay updated with the latest in finance and trading!
Follow FMevents across our social media platforms for news, insights, and event updates. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/showcase/financemagnates-events/
👍 Facebook: https://www.facebook.com/FinanceMagnatesEvents
📸 Instagram: https://www.instagram.com/fmevents_official
🐦 Twitter: https://twitter.com/F_M_events
🎥 TikTok: https://www.tiktok.com/@fmevents_official
▶️ YouTube: https://www.youtube.com/@FinanceMagnates_official
Don't miss out on our latest videos, interviews, and event coverage. Subscribe to our YouTube channel for more!
Welcome to FMLS:24 – the premier event where influential brands and leaders in trading, payments, fintech, and digital assets come together!
Join over 2,500 industry professionals, engage with 150+ expert speakers, and discover endless opportunities with 70+ top exhibitors. FMLS:24 is where senior executives and decision-makers gather to close deals, forge new partnerships, and strengthen connections with long-term clients.
Whether you’re in finance, technology, or payments, this summit is your gateway to future growth, meaningful collaborations, and industry-leading insights.
👉 Don't miss out – secure your ticket now at https://events.financemagnates.com/ZQEYy0?utm_source=youtube&utm_campaign=fmls24-awareness&utm_medium=video&RefId=MLS%3A24+Video+Promo
#fmls #fmls24 #fmevents #financemagnates #forex #payments #crypto #events #london #fintech #ai #generativeai #technology #onlinetrading #forex #investing #investors #tech
📣 Stay updated with the latest in finance and trading!
Follow FMevents across our social media platforms for news, insights, and event updates. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/showcase/financemagnates-events/
👍 Facebook: https://www.facebook.com/FinanceMagnatesEvents
📸 Instagram: https://www.instagram.com/fmevents_official
🐦 Twitter: https://twitter.com/F_M_events
🎥 TikTok: https://www.tiktok.com/@fmevents_official
▶️ YouTube: https://www.youtube.com/@FinanceMagnates_official
Don't miss out on our latest videos, interviews, and event coverage. Subscribe to our YouTube channel for more!
FM's Andrea Badiola Mateos at LSEG's Cyprus event
FM's Andrea Badiola Mateos at LSEG's Cyprus event
FM's Andrea Badiola Mateos at speaking in a panel discussion at LSEG's Cyprus event
FM's Andrea Badiola Mateos at speaking in a panel discussion at LSEG's Cyprus event
The Role of PAMM, MAM & Copy Trading in Business Growth Strategies | Webinar
The Role of PAMM, MAM & Copy Trading in Business Growth Strategies | Webinar
The copy trading market is projected to double in size, growing from $2.2 billion to $4 billion by the end of this decade. In light of this, brokers and financial institutions are increasingly adopting PAMM, MAM, and Copy Trading solutions to scale operations and drive profitability. In this insightful webinar, Sergey Ryzhavin, Product Owner at B2COPY, outlines the advanced features of the B2COPY platform, showcasing how it enhances Copy Trading, PAMM, and MAM performance. Sergey also explores strategies for using these tools to attract new clients, improve customer engagement, and create additional revenue streams.
📣 Stay updated with the latest in finance and trading!
Follow Finance Magnates for news, insights, and event updates across our social media platforms. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/company/financemagnates/
👍 Facebook: https://www.facebook.com/financemagnates/
📸 Instagram: https://www.instagram.com/financemagnates_official
🐦 X (Twitter): https://twitter.com/financemagnates/
📡 RSS Feed: https://www.financemagnates.com/feed/
▶️ Telegram: https://t.me/financemagnatesnews
Don't miss out on our latest videos, interviews, and event coverage.
🔔 Subscribe to our YouTube channel for more!🔔
The copy trading market is projected to double in size, growing from $2.2 billion to $4 billion by the end of this decade. In light of this, brokers and financial institutions are increasingly adopting PAMM, MAM, and Copy Trading solutions to scale operations and drive profitability. In this insightful webinar, Sergey Ryzhavin, Product Owner at B2COPY, outlines the advanced features of the B2COPY platform, showcasing how it enhances Copy Trading, PAMM, and MAM performance. Sergey also explores strategies for using these tools to attract new clients, improve customer engagement, and create additional revenue streams.
📣 Stay updated with the latest in finance and trading!
Follow Finance Magnates for news, insights, and event updates across our social media platforms. Connect with us today:
🔗 LinkedIn: https://www.linkedin.com/company/financemagnates/
👍 Facebook: https://www.facebook.com/financemagnates/
📸 Instagram: https://www.instagram.com/financemagnates_official
🐦 X (Twitter): https://twitter.com/financemagnates/
📡 RSS Feed: https://www.financemagnates.com/feed/
▶️ Telegram: https://t.me/financemagnatesnews
Don't miss out on our latest videos, interviews, and event coverage.
🔔 Subscribe to our YouTube channel for more!🔔
Join us at FMLS:24 to connect with global institutional brokers. Secure your spot today! #fmls24
Join us at FMLS:24 to connect with global institutional brokers. Secure your spot today! #fmls24