A significant security breach involving Trust Wallet has sent shockwaves through the cryptocurrency community, with reports of users” funds vanishing within minutes from their wallets. This alarming situation has led to urgent alerts on social media platforms and an official response from the wallet provider.
The incident is said to be concentrated on Trust Wallet“s browser extension, with version 2.68 confirmed to be vulnerable. Users of this specific version are strongly advised to disable the extension immediately and upgrade to version 2.69, which is available on the official Chrome Web Store. According to the company, users of mobile-only versions and other extension versions are currently not affected.
Despite the reassurance regarding the mobile versions, anxiety remains high among Trust Wallet users. Reports on the platform X indicate that wallets are being drained swiftly, often without any noticeable alerts for the users until their balances reach zero. Many community members believe these withdrawals are automated, suggesting that a live exploit is at play rather than simple user negligence.
Prior to Trust Wallet issuing an official statement, alarms were already being raised across crypto Twitter. Influential accounts such as CryptoNobler warned users about suspicious outflows and encouraged them to review their wallet activities immediately. The urgency intensified as other users, including known on-chain analysts like Akinator, pointed out transaction patterns indicative of exploitation rather than mere phishing attempts.
In a series of tweets, crypt0kol added to the mounting concern by revealing that a recent update to the browser extension had included hidden code. This code reportedly sends wallet data outside the application, disguised as analytics, and activates when a seed phrase is imported, leading to the draining of wallets.
Following the growing unrest, Trust Wallet confirmed the security incident, clarifying that only the Browser Extension version 2.68 is compromised. Users are urged to disable the extension and upgrade to the safer version. However, the lack of a detailed technical explanation about the exploit”s mechanics or the duration of its potential activity has left many users feeling uneasy.
The scrutiny surrounding browser wallets has intensified once again, as they remain convenient yet risky options for interacting with decentralized applications. While they offer ease of use, they also expose users to various vulnerabilities, including malicious scripts and targeted attacks. The psychological impact of a breach extends beyond the immediate victims, fostering widespread distrust among users of these wallets.
For those affected, immediate action is recommended: disable the Trust Wallet Browser Extension if using version 2.68, upgrade only through the official Chrome Web Store, review and revoke all token approvals, and consider transferring assets to a new wallet as a precaution. Additionally, users are advised to refrain from engaging with decentralized applications (dapps) until the situation stabilizes.
As this situation continues to develop, what began as scattered user complaints has escalated into a verified security incident. While the exploit may be limited to a specific version, the potential for significant consequences remains. Further updates from Trust Wallet are anticipated as the investigation unfolds.
