The Solana network seems to be the victim of an ongoing cyberattack. Over the last few hours, several users have taken to Twitter to report that their Solana holdings have been completely drained. Data from block explorer, Solana FM backs these reports and shows that the attackers have managed to syphon off more than $5 million so far. The platform has also managed to identify four wallets currently linked to the attack and has posted details of the same on Twitter.
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics
The evidence we have at hand now points to stolen private keys as the culprit for the attacks on Solana users who use specific wallet apps. The passwords could have been stolen from a database, a supply chain attack that infected some wallet apps, or by phishing users for individual passwords. Given the number of wallets affected, one of the former two seems more likely. Solana users should move their funds to cold wallets to prevent theft until the attacks are stopped.
The Solana attack is just the latest in a recent series of attacks on crypto. Users will want to revoke any third-party permissions on their wallets until Solana and other affected exchanges fix the issues allowing these attacks. Investors should also move their cryptocurrencies out of hot wallets to cold wallets.