Trust Wallet suffered a cyberattack involving the Shai-Hulud supply chain breach, resulting in the theft of $8.5 million in assets. White hat security experts actively responded by launching DDoS attacks to limit further damage and protect users. #ShaiHulud #TrustWallet #ChromeWebStore
Keypoints
- The attack exploited Trust Wallet’s browser extension by tampering with version 2.68 and publishing malicious code via the Chrome Web Store.
- Attackers gained access to the extension’s source code and API key through the second wave of the Shai-Hulud supply chain attack.
- Approximately $8.5 million worth of assets from 2,520 wallet addresses were drained during the incident.
- Trust Wallet responded by advising affected users to transfer funds and submit reimbursement claims, while rolling back to a safer version.
- White hat researchers launched DDoS attacks to temporarily disable the attacker’s malicious domain and mitigate ongoing damage.
Read More: https://thecyberexpress.com/shai-hulud-attack-trust-wallet/