Lookonchain APP

App Store
Feeds Articles

Plugin Wallet Security Incident Overview: Plagued by Counterfeit Software and Phishing Attacks, Direct Official Vulnerabilities Are Few

2025.12.26 09:53:16

December 26th — Trust Wallet issued a security alert this morning confirming a vulnerability in its browser extension (version 2.68). On-chain detective ZachXBT reports hundreds of users have already had funds stolen, with total losses hitting at least $6 million. Below are key security incidents involving major browser extension wallets: ### Trust Wallet (2022) Back in November 2022, Trust Wallet’s extension had a WebAssembly vulnerability affecting only new addresses created between Nov 14–23, 2022. The flaw led to ~$170k in stolen funds. Trust Wallet found the issue via its bug bounty program, patched it, and fully compensated affected users. ### MetaMask - **2022**: Faced a “Demonic” vulnerability (versions before 10.11.3) that exposed private keys in browser memory — no large-scale losses reported. - **2023–2025**: Official extension operated securely, but it’s often targeted by fake versions. A 2025 Chainalysis report noted a spike in abnormal thefts, driven mostly by counterfeit malware and phishing (not the wallet itself). - **Current**: MetaMask publishes monthly security reports on this, but as a top Ethereum plugin wallet, it remains a key counterfeit target. ### Phantom (Solana’s main wallet) - **2022**: Also had the “Demonic” vulnerability — no major losses reported. - **Early 2025**: A controversy arose after a user lost $500k when private keys were stored unencrypted in memory (leading to a hack). A class-action lawsuit was filed in the Southern District of New York. Phantom’s team denied all claims, calling the lawsuit “baseless” and noting Phantom is non-custodial (users bear fund security responsibility). ### Rabby Wallet (DeFi-focused) - **2022**: Hacked via a flaw in its Rabby Swap feature, leading to ~$200k in stolen crypto. The issue wasn’t with the extension itself, but the built-in swap tool. ### Key Takeaway The most common way extension wallets get compromised is via fake downloads. In 2025, multiple such incidents hit the Firefox store, targeting major wallets like MetaMask, Phantom, and Trust Wallet. Direct official vulnerabilities are far rarer. **Advice**: Only download extension wallets from the official Chrome Web Store to protect your funds.
Add to Favorites Download image Share x Copy link
Relevant content

Bithumb: Compensation for Price Difference and Consolation Money to Users Who Sold BTC at Low Price, Compensation of 20,000 KRW to All Visiting Users

On February 8, South Korean crypto exchange Bithumb released a post-incident report on its "accidental Bitcoin airdrop." That same day, 99.7% of the mistakenly airdropped Bitcoin was swiftly recovered. The remaining 0.3% (roughly 1,788 BTC) had been sold, and the shortfall was fully covered using Bithumb’s own funds. As of 10:42 PM KST on February 7, 2026, Bithumb’s Bitcoin asset reconciliation was fully restored to 100%, ensuring all client assets were protected. South Korea’s Financial Supervisory Service (FSS) conducted an on-site inspection at the exchange on February 7 at 1:00 PM KST. Bithumb also announced targeted compensation: - Each user who accessed the Bithumb app or website during the incident will get 20,000 South Korean won. - Users who sold Bitcoin at a depressed price during the incident will be reimbursed 100% of their actual price difference, plus an extra 10% as a goodwill gesture. - All trading pairs on the platform will have zero transaction fees for 7

3 minutes ago

Yi He's Reflection on Clearing Inventory: Entering a Bear Market is the Best Timing for Positioning, Still Optimistic about the Industry's Next Bull Market Opportunity

February 8 Yi Lihua, founder of Liquid Capital (formerly LD Capital), posted a note today after selling all his ETH. Key points from his message: “I first acknowledge market cycles still hold true. In this new phase—defined by strong US stocks, the coexistence of Decentralized Autonomous Treasuries (DATs) and ETFs, intact crypto community consensus, and the market’s susceptibility to manipulation—there’s a counterpoint: a crypto bear market is also the optimal time to position. We capitalized on the last bear market, and this holds the same potential. The future is bright; we still look forward to the industry’s next bull market and will keep focusing on **Building**. The pessimist is right—but the optimist wins.”

3 minutes ago

Baselink: The US Government Has No Authority to "Bail Out" Bitcoin, Taxpayer Money Will Not Be Invested in Crypto Assets

February 8 — U.S. Treasury Secretary Janet Yellen told a congressional hearing on February 4 that neither the Treasury Department nor the Financial Stability Oversight Council (FSOC) has the authority to “bail out” Bitcoin or require banks to hold it as part of their reserves. Yellen stressed that U.S. taxpayer dollars will not be invested in crypto assets. She noted that Bitcoin currently held by the U.S. government stems from law enforcement seizures — a clear distinction from funds managed on behalf of taxpayers.

3 minutes ago

Yihua's Trend Research transferred the final 0.148 ETH to a CEX

On February 8th, on-chain analyst Ai Auntie (@ai_9684xtpa) reported that Trend Research—a subsidiary of Yihua—transferred its final 0.148 ETH to an exchange, concluding an 8-day sell-off. Over the period, the firm sold 658,168.58 ETH total, valued at $1.354 billion. With an average entry cost of ~$3,104.36 per ETH and an average selling price of $2,058.05, the round incurred a $688 million loss. Notably, Trend Research has surrendered all $315 million in profits from its prior cycle, resulting in a cumulative net loss of $373 million.

3 minutes ago

Li Lin Clarifies: Not the Backer of Justin Sun's Trend Research or Garrett Jin

**February 8th** Du Jun, co-founder of ABCDE, retweeted a screenshot from Li Lin’s WeChat Moments to clarify recent claims. Li Lin stated in the post: “I am not the investor behind Yi Lihua’s Trend Research, nor am I linked to Garrett Jin—the agent of ‘BTC OG Whale Insider.’ I have never reduced my BTC or ETH holdings in this market cycle.” Du Jun added further context: - Li Lin’s family office, Avenir Group, remains BlackRock’s IBIT’s largest Asian holder. - U.S. SEC 13F reports are updated quarterly. - ~80% of the ETH held by the family office is pledged and held long-term. - To his knowledge, 95% of the funds are managed by the family office’s in-house team—no external institutions or individuals are entrusted with management.

3 minutes ago

Scam Sniffer: 4741 Victims, Total Loss of $6.27 Million in January Phishing Campaign

On February 8, Scam Sniffer released its January 2026 Security Report, highlighting key crypto-related security incidents from the month. A January victim lost $12.25 million after copying an incorrect address from a transaction record—mirroring a $50 million loss suffered by another user in December 2025 for the same mistake. Additionally, signature phishing attacks spiked in January: 4,741 people fell victim, losing a combined $6.27 million—up 207% from December 2025.

3 minutes ago

Hot feeds

A trader profits $448K by monitoring #Binance's new listings!

2024.12.13 17:37:29

A smart #AI coin trader made $17.6M on $GOAT, $ai16z, $Fartcoin,$arc.

2025.01.05 16:05:18

When Elon Musk tweeted about Moltbook, the meme coin MOLT experienced a short-term 30% price surge, hitting a new all-time high of $114 million.

2026.01.31 18:37:29

A $PEPE whale that had been dormant for 600 days transferred all 2.1T $PEPE($52M) to a new address.

2024.12.14 10:35:27

Last week, funds have flowed into #Bitcoin, #Ethereum, and #Hyperliquid.

2024.12.16 14:48:36

A sniper earned 2,277 $ETH ($8.3M) trading $SHIRO within 18 hours!

2024.12.03 23:09:08

 More

Hot Articles

Follow us

X

Follow

Telegram

Join