Home
News
Details

Hundreds of EVM Wallets Drained in Ongoing Exploit, Over $107K Stolen

iconCryptoPotato
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
AI summary iconSummary

expand icon
On-chain data reveals hundreds of EVM wallets are being drained in an ongoing exploit, with over $107,000 stolen so far. On-chain analysis by ZachXBT shows the attacker is targeting multiple wallets for small amounts, usually under $2,000. The attack is still active, and total losses are rising. The cause and identity of the attacker remain unclear, though a linked wallet has been flagged. Separately, Trust Wallet reported a security breach in its browser extension, where a malicious version led to $8.5 million being drained from 2,520 wallets.

A silent attack is unfolding across EVM networks as hundreds of unsuspecting crypto users are losing funds, prominent on-chain investigator ZachXBT revealed.

But investigators are struggling to identify the exploiter behind it.

Mysterious Wallet Drainer

According to ZachXBT’s latest findings, the attack is targeting a large number of wallets for relatively small amounts. Losses have been mostly below $2,000 per victim. While the individual thefts are limited in size, the cumulative losses are steadily increasing. As of the most recent update shared by the investigator, approximately $107,000 has been drained, and the total is expected to rise as the activity continues. The attack remains active at the time of reporting.

ZachXBT said that the root cause of the wallet drains has not yet been identified, which makes it unclear how the attacker is gaining access to victims’ funds. No definitive exploit vector has been confirmed so far. While the identity of the attacker is also unknown, ZachXBT has flagged a wallet address believed to be linked to the activity: 0xAc2e5153170278e24667a580baEa056ad8Bf9bFB.

Trust Wallet Hack

Wallet drains continue to plague crypto users. Just a week earlier, Trust Wallet disclosed a major security incident involving its browser extension. On December 24, a malicious version of the Trust Wallet Browser Extension, version 2.68, was published to the Chrome Web Store outside the company’s normal release and review process.

The compromised version contained malicious code that allowed attackers to access sensitive wallet data and carry out unauthorized transactions. Trust Wallet said the issue only affected users who opened and logged into version 2.68 between December 24 and December 26, and did not impact mobile app users or other extension versions.

The company identified 2,520 affected wallet addresses from which approximately $8.5 million in assets were drained and linked to 17 attacker-controlled addresses. Trust Wallet also noted that the same attacker addresses were used to drain wallets not connected to the incident. The company has since promised reimbursement to affected users.

The post Hundreds of EVM Wallets Quietly Drained as Unknown Exploit Steals Over $107K appeared first on CryptoPotato.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.