Internet Security

Solana and Slope Confirm Wallet Security Breach

Key Takeaways Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet. Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future. Full details of the attack are still under investigation. Share this article URL Copied The…

Published 4 years ago in 11th August 2022

By John

Solana and Slope Confirm Wallet Security Breach

Key Takeaways

Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet.
Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future.
Full details of the attack are still under investigation.

The Solana Foundation and Slope have provided additional information on a security breach that affected thousands of wallets today.

Solana Confirms Wallet Breach

The Solana Foundation has published new details about today’s attack.

Earlier, nearly 8,000 addresses were drained through what was believed to be a breach of the third-party wallet app Slope.

This afternoon, the Solana Foundation confirmed on the Solana Status Twitter account that the addresses affected by the attack “were at one point created, imported, or used in Slope mobile wallet applications.”

It added that private key information was accidentally transmitted to an application monitoring service. It said that further details “are still under investigation.”

The attack only affected Slope’s downloadable wallet app; Slope hardware wallets are still secure. Though thousands of wallets were drained, the Solana Foundation added that the Solana protocol itself remains secure.

Slope also commented on the situation. It said that a “cohort” of Slope wallets were compromised and confirmed that several of its own staff wallets were drained.

Slope said that it had not confirmed the nature of the attack. “We have some hypotheses as to the nature of the breach, but nothing is yet firm,” Slope said in its official statement. It committed to publishing a full post-mortem in the future.

The company also suggested that users take action to secure their funds. It advised users to create a new seed phrase and wallet and transfer their funds to that wallet.

Both companies say that they are performing internal investigations and working with external auditors.

Various other individuals within the Solana ecosystem provided information and speculated on the attack earlier today.

At least two other projects in the Solana ecosystem have been hacked this year. Cashio was hacked for $28 million in March, while Wormhole was hacked for $322 million in February.

Disclosure: At the time of writing, the author of this piece owned BTC, ETH, and other cryptocurrencies.

Disclaimer Read More Read Less

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.