Experts have confirmed the leakage of data from users of the Solana-Slope wallet. A similar bug was found in NEAR Wallet

Hacxyk experts engaged in the audit of smart contracts reported a vulnerability that could lead to a leak of the SID phrases of users of the NEAR Wallet wallet.

According to experts, wallet owners who chose email as a way to recover a secret phrase could be at risk.

Hacxyk noted that with such a request, the seed phrase was sent directly to the user’s mail, which already jeopardizes its security, since mail services can access it.

Experts found that when clicking on the link, the user’s data was sent to a third party — the Mixpanel business intelligence service. At the same time, the request itself contained a seed phrase.

The bug was detected in June and it has already been fixed. Hacxyk recommended that all users of NEAR Wallet wallets who have ever chosen email as a recovery method, transfer assets to a new wallet and update the seed phrase.

Hacxyk experts engaged in the audit of smart contracts reported a vulnerability that could lead to a leak of the SID phrases of users of the NEAR Wallet wallet. According to experts, wallet owners who chose email as a way to recover a secret phrase could be at risk. Hacxyk noted that with such a…

Experts have confirmed the leakage of data from users of the Solana-Slope wallet. A similar bug was found in NEAR Wallet

According to experts, wallet owners who chose email as a way to recover a secret phrase could be at risk.

Recent Posts

Categories

Archives