altcoin, altcoins, anatoly yakovenko, dune analytics, exploit, hacker, hackers, phantom, slope, slope app, slope finance, slope mobile, slope wallet, sol wallet hack, sol-based usdc, solana, solana labs ceo, solana labs co-founder, solana wallet exploit, vulnerability, android

Following the Solana wallet attack, the Solana Status team updated the public and detailed that the wallet addresses affected by the breach were tied to Slope mobile wallet applications. The team further stressed that “there is no evidence the Solana protocol or its cryptography was compromised.”

Solana Status Report Says Affected Addresses Were at One Point Created in Slope Mobile Wallet Applications

During the last 48 hours, the Solana team has been dealing with an attack that saw thousands of Solana-based wallets compromised. At the time, Solana Labs co-founder and CEO Anatoly Yakovenko thought the exploit possibly stemmed from a supply chain attack. He explained that iOS and Android wallets were affected when he said: “most of the reports are Slope, but a few Phantom users as well.”

On August 3, 2022, the Solana Status Twitter account explained that the addresses affected in the hack were tethered to Slope mobile wallet applications. “After an investigation by developers, ecosystem teams, and security auditors, it appears affected addresses were at one point created, imported, or used in Slope mobile wallet applications,” Solana Status wrote. “This exploit was isolated to one wallet on Solana, and hardware wallets used by Slope remain secure.” Solana Status said:

While the details of exactly how this occurred are still under investigation, private key information was inadvertently transmitted to an application monitoring service. There is no evidence the Solana protocol or its cryptography was compromised.

Slope Finance published an official statement from the wallet team and breach details are vague. Slope said “A cohort of Slope wallets were compromised in the breach, we have some hypotheses as to the nature of the breach, but nothing is yet firm, [and] we feel the community’s pain, and we were not immune. Many of our own staff and founders’ wallets were drained.” Slope also added that the team was actively conducting internal investigations and audits, while working with security and audit groups.

Security Experts Say Slope’s Seed Phrases Were Logged in Readable Plaintext

During the official statement, the Slope team further recommended that Slope wallet users “create a new and unique seed phrase wallet, and transfer all assets to this new wallet.” Slope added:

If you are using a hardware wallet, your keys have not been compromised.

Data from Dune Analytics shows that there were more unique addresses that were affected by the breach than initially reported. Statistics show that 9,223 unique addresses suffered from the bug and $4,088,121 in crypto was stolen. Most of the assets hacked were made up of solana (SOL) and SOL-based USDC.

It is being said that Slope’s mnemonic seed phrases transferred to Slope’s server were logged in readable text. The Slope wallet team allegedly stored the mnemonics in debug logging software via a centralized Sentry server. Security experts at Ottersec detailed that “anybody with access to Sentry could access [a] user’s private keys.” Ottersec also noted that the Slope team was “very helpful in sharing data related to the hack.”

TECH NEWS RELATED

2022 Hyundai Fastback N Limited Edition review

The big-booted Hyundai i30 Fastback N always was a bit of a bridge between the ‘classic’ i30 N hot hatch that put the brand’s performance moniker on the map, and the largely reimagined, techno-stylised i30 Sedan N (or Elantra N as it’s known in the States) – and it seems ...

View more: 2022 Hyundai Fastback N Limited Edition review

For 38 Consecutive Days Ethereum Gas Fees Record the Lowest Rates Since 2020

In 43 days, the Ethereum network could finally see a full transition from proof-of-work (PoW) to proof-of-stake (PoS) via The Merge. Meanwhile, during the last 38 days, Ethereum’s layer one (L1) onchain transaction fees have dropped below the $5 mark and tumbled even lower by the end of July. ...

View more: For 38 Consecutive Days Ethereum Gas Fees Record the Lowest Rates Since 2020

A Total Sleeper 2022 Midsize Pickup Truck Just Topped J.D. Power’s APEAL Study

Pickup trucks continue to be insanely popular, thanks to their blend of function and rugged style. People who drive pickup trucks tend to love them, and it’s no surprise. Yet what may be a surprise is just how much owners of one understated truck love their ride. Here’s why the ...

View more: A Total Sleeper 2022 Midsize Pickup Truck Just Topped J.D. Power’s APEAL Study

How to Use Your Phone to Control a Roku

sdx15/Shutterstock.com A great thing about Roku devices is they all come with a handy Roku remote. However, we all know how easy they are to lose. Thankfully, you can use your phone as a Roku remote too. This is possible through the official Roku Remote app available for iPhone, ...

View more: How to Use Your Phone to Control a Roku

2022 Subaru WRX RS manual review (video)

It’s bigger, more practical and safer than before, but it’s also no quicker, uses more fuel and emits more emissions than the predecessor. Welcome to the all-new 2022 Subaru WRX. A vehicle that adopts the strangest form of evolution we’ve seen in a long while. As a friendly warning, we ...

View more: 2022 Subaru WRX RS manual review (video)

Google Drive says Storage is full but it’s not

Some users of Google Drive have been experiencing a strange error with their Google Drive account. The account shows that the storage is full, but that is not the case. This is likely happening because your Google Drive storage is shared across your Google account, which means files stored in ...

View more: Google Drive says Storage is full but it’s not

Dragon Ball FighterZ to get rollback netcode on PS5, Xbox Series X, and PC

image via Bandai Namco After releasing Lab Coat Android 21 and a balance patch with no communication on its future, Dragon Ball FighterZ will receive next-generation upgrades and rollback netcode. After the EVO 2022 top eight event, Bandai Namco and Dragon Ball FighterZ producer Tomoko Hiroki took the stage. ...

View more: Dragon Ball FighterZ to get rollback netcode on PS5, Xbox Series X, and PC

Binance CEO Meets Central African Republic Leader — President Touadéra Says Meeting Was a 'Truly Remarkable Moment'

After meeting the leaders of Ivory Coast and Senegal in July, the CEO of the cryptocurrency Binance, Changpeng Zhao, revealed in a tweet that he had recently met the President of the Central African Republic (CAR). Some of the topics discussed by the two were focused on “education, investments ...

View more: Binance CEO Meets Central African Republic Leader — President Touadéra Says Meeting Was a 'Truly Remarkable Moment'

The Samsung Galaxy S23 could be the best Android phone ever made

Moto G62 is arriving in India with Snapdragon 695 SoC; G32 tags along

The Best Tech to Battle a Hot Summer

A3: Still Alive introduces latest update which adds a new Guild Boss to challenge and an abundance of events

How Much Does a Fully Loaded 2023 Acura MDX Cost?

Chromatic Souls: AFK Raid introduces its first major update since launch, buffing up its endgame and giving out some quality-of-life improvements

China and Taiwan's Potential Economic Impact, Bear Market Warnings, and FC Barcelona Metaverse News — Bitcoin.com News Week in Review

Honda Just Changed the Game With This 2023 Honda CR-V Standard Feature

What Is the Best 2022 Mazda CX-5 Trim?

Motorola announces Moto X30 Pro’ specs with 200MP camera

Zenless Zone Zero's beta test shows some flashy looking gameplay

Police in Kazakhstan Arrest Gang Forcing IT Specialists to Run Crypto Farms

OTHER TECH NEWS

Top Car News Car News