Blockchain

Trust Wallet Chrome Extension Hack Drains Over $6.7M from Users

Crypto wallet provider Trust Wallet has confirmed a security incident affecting a specific version of its browser extension, after on-chain investigator ZachXBT estimated that attackers drained more than $6.77 million from users’ wallets so far.  The incident has raised fresh concerns around browser-based wallet security at a time when crypto-related exploits continue to rise across the industry. The issue surfaced on Thursday after ZachXBT issued a public alert on Telegram, warning that multiple Trust Wallet users had reported sudden and unauthorized fund transfers.
According to the investigator, users saw their balances disappear within minutes, with no signs of gradual withdrawals. Many reports appeared shortly after Trust Wallet rolled out an update to its Chrome browser extension. Further, as per Lookonchain, the hacker has sent about $4.25 million to ChangeNOW, FixedFloat, KuCoin, and HTX. Trust Wallet later confirmed on X that the incident impacted Browser Extension version 2.68.
The company urged users to immediately upgrade to version 2.69 and advised those still on the affected version to disable the extension until the update is complete. “Users with Browser Extension 2.68 should disable and upgrade to 2.69,” Trust Wallet said, adding that mobile-only users and other extension versions were not affected.
Several user reports claimed that funds vanished immediately after importing seed phrases into the updated extension 2.68.  On-chain data reviewed by ZachXBT showed rapid transfers involving Bitcoin, Ethereum, and Solana, with funds routed through multiple receiving addresses in a consistent pattern. The activity concentrated in the hours following the update rollout, suggesting a narrow but impactful attack window.
According to publicly available blockchain information, ZachXBT found several addresses that were being paid by hundreds of affected wallets. Early estimates placed losses above $6 million, while visible on-chain transfers accounted for at least $4.3 million. The final figure could rise as more victims come forward. Trust Wallet said it is actively investigating the issue but has not publicly disclosed the root cause or whether the extension update directly enabled the exploit. As of press time, the company has not announced recovery options or mitigation measures beyond upgrading the extension.
Binance Co-Founder Changpeng Zhao (CZ) addressed the incident on X, saying “So far, $7m affected by this hack. @TrustWallet will cover. User funds are SAFU. Appreciate your understanding for any inconveniences caused.” He added that, “The team is still investigating how hackers were able to submit a new version.”

The Trust Wallet incident raises the issue of increasing risks associated with browser extensions, which typically deal with private keys and seed phrases. In contrast to smart contract exploits, wallet-level attacks may result in immediate and irreparable losses, and users have little to do about it.

The incident is also part of a larger trend of increasing crypto theft. According to Chainalysis estimates, attackers stole more than $3.41 billion in cryptocy between January and early December this year, slightly higher than last year’s total. Many of these incidents involved phishing attacks, compromised third-party services, or wallet vulnerabilities.

Decentralized prediction platform Polymarket, earlier this week, verified that a recent hack was a result of a vulnerability in a third-party authentication provider, and not its own systems. There, the attackers emptied user accounts following the use of external login infrastructure, which highlights the importance of dependencies that are not part of core platforms in creating severe risks.

The combination of these events demonstrates that wallet providers and crypto platforms are still appealing targets, despite the absence of direct protocol failures. The Trust Wallet case contributes to the existing discussions on user security, extension-based wallets, and the necessity of more robust protection of the crypto ecosystem as a whole

Terron Gold

Share
Published by
Terron Gold
Tags: chrome extensionhackersTrust WalletZachXBT
2 months ago

Recent Posts

Senator Murphy Alleges White House Insiders Profited From Iran Strike Bets, Pushes to Ban Prediction Markets on Government Actions

U.S. Senator Chris Murphy (D-Conn.) is calling for legislation to ban prediction markets that allow traders to bet…

2 days ago

IRS Proposes Electronic-Only Delivery For Crypto Tax Forms Under New Reporting Rules

The U.S. Internal Revenue Service (IRS) has proposed a new rule that would allow cryptocy brokers to deliver…

2 days ago

Crypto-Friendly Fintech Revolut Files For U.S. Banking License to Expand Crypto and Payments Services

Global fintech powerhouse Revolut has filed an application for a U.S. banking license, a move that would allow…

2 days ago

Suspect Arrested on Caribbean Island of Saint Martin in $46M Seized Crypto Theft Case

A man accused of stealing tens of millions of dollars in cryptocy from U.S. government…

2 days ago

NYSE Parent ICE Invests in Crypto Exchange OKX at $25B Valuation Amid Tokenized Stocks Push

Intercontinental Exchange (ICE) — the parent company of the New York Stock Exchange — has taken a strategic…

2 days ago

AI Models Favor Bitcoin as a Store of Value, Stablecoins for Payments, BPI Study Finds

A new study from the Bitcoin Policy Institute (BPI) found that leading artificial intelligence models overwhelmingly favor Bitcoin…

2 days ago