A serious security breach involving the Trust Wallet Chrome extension (version 2.68) has resulted in more than $6 million in stolen crypto funds. The incident began on December 24, shortly after users entered their seed phrases into the affected extension.
The stolen assets were quickly transferred across multiple wallets, with funds moving on Ethereum, Bitcoin, and Solana networks. One newly created wallet still reportedly holds over 255 ETH.
Trust Wallet has confirmed the incident and urged users to stop using the compromised extension version and upgrade immediately. Mobile app users were not impacted. Meanwhile, Binance announced plans to reimburse affected users through its SAFU fund, with total reported losses nearing $7 million.
Security analysts advise impacted users to revoke wallet permissions and move remaining funds to a new wallet with a fresh seed phrase.
