A series of wallet drain attacks Solana The most prominent team, BONKbot’s team, denies that this attack is related to their application, but on the last day it may be related to Telegram trading bots.
Over the past few hours, numerous reports of Solana wallets’ SOL being empty have surfaced on Twitter, with some users blaming the Solana team’s popular application, BONKbot. Solana Meme Coin BONK You can buy and sell Solana-based tokens through the messaging app Telegram.
Early Friday, BONKbot denied the claimThis suggests that affected users who had previously used Telegram bots were more likely to export their private keys for use in other applications.
“BONKbot is safe, but attacks are being triggered elsewhere in the ecosystem!” the team wrote on Twitter. “Our logs show that all user accounts being breached had previously exported their private keys. Non-BONKbot wallets are also being drained. BONKbot users who have not exported their keys are safe.”
On Friday afternoon the team Shared an update To date, a total of 302 wallet breach victims have been tracked and approximately 2,808 SOLs have been swiped, with approximately $523,000 worth of SOLs swiped at current prices. BONKbot claims that 113 of the victims had previously used the bot, but all exported their private keys (PK) for use elsewhere.
“Our analysis strongly suggests that the attack involved the victim importing PK into a specific application,” BONKbot said. However, the team did not disclose the application in question. decryption I contacted them for clarification but did not receive an immediate response.
According to BONKbot’s analysis, the largest single victim lost just over 500 SOL, or approximately $93,000, as a result of the attack.
Speculation is rampant on Twitter that rival Telegram trading bot Solareum may be linked to a possible private key leak. In a tweet reply, the team said: Confirmed by Twitter user Although they said, “There is a possibility of being exploited,” the Solarium team also showed a defensive attitude. They were actually victims.
“We will speak publicly until we confirm that there has actually been exploitation. “Otherwise it is only a possible scenario,” they wrote. “Other wallets that did not create wallets through our bot or did not import PKs into our bot were also exploited.”
decryption We reached out to Solareum for comment but did not immediately hear back.
Edited by Ryan Ozawa.
Stay up to date with cryptocurrency news and receive daily updates in your inbox.
