wither While the emptying of 8000 wallets in the ecosystem disappointed many investors, a new claim was made about the cause of the problem.
Security company investigating the cause of the problem with the Solana team otteryour problem SlopeHe stated that the . is caused by a security vulnerability in the wallet application.
According to Otter, created in Slope’s wallet app “safe words” they were saved on a central server in the form of readable texts without any encryption. This server Slope by Sentry It was determined that it was leased from the company named.
Otter stated that anyone with access to this server will have access to the private words of all wallets saved there. It was stated that this low security standard made the attackers’ job easier.
In the statement made by Slope, it was stated that 1444 of the 9223 wallets affected in total may have been affected by this vulnerability, and the work on the others is continuing.
Slope warned its users to create wallets with new private keys and move their funds.
Over $4M was drained from Solana wallets over the past 2 days. We’ve been working directly with @solana and @slope_finance to investigate.
Here’s what we found. pic.twitter.com/Ny1gwuJfIb
— OtterSec (@osec_io) August 4, 2022