Back
Binance Founder CZ Reveals $8.5 Million Loss in Trust Wallet Hack, Full Compensation Offered

Binance Founder CZ Reveals $8.5 Million Loss in Trust Wallet Hack, Full Compensation Offered

Trust Wallet confirms December’s v2.68 extension breach stole $8.5 million via leaked API keys from a prior supply-chain attack, pledging reimbursement and advising users to secure funds.

Summary

Trust Wallet reported that its v2.68 browser extension was compromised between Dec. 24–26, resulting in $8.5 million stolen from 2,520 wallets. The breach was traced to leaked API keys linked to the November ‘Sha1-Hulud’ supply-chain incident involving stolen GitHub and Chrome Web Store API access. Trust Wallet released v2.69, pledged full reimbursement, and is reviewing over 5,000 user claims. Affected users are advised to move funds and submit the official claim form.

Terms & Concepts
  • Trust Wallet: A non-custodial cryptocurrency wallet that allows users to store and manage their digital assets securely.
  • Supply-chain attack: A cyberattack targeting vulnerabilities in the software delivery process, often by compromising trusted third-party services or code repositories.