Experts have confirmed the leakage of data from users of the Solana-Slope wallet. A similar bug was found in NEAR Wallet

Hacxyk experts engaged in the audit of smart contracts reported a vulnerability that could lead to a leak of the SID phrases of users of the NEAR Wallet wallet.
According to experts, wallet owners who chose email as a way to recover a secret phrase could be at risk.
Hacxyk noted that with such a request, the seed phrase was sent directly to the user’s mail, which already jeopardizes its security, since mail services can access it.
Experts found that when clicking on the link, the user’s data was sent to a third party — the Mixpanel business intelligence service. At the same time, the request itself contained a seed phrase.
The bug was detected in June and it has already been fixed. Hacxyk recommended that all users of NEAR Wallet wallets who have ever chosen email as a recovery method, transfer assets to a new wallet and update the seed phrase.
Hacxyk experts engaged in the audit of smart contracts reported a vulnerability that could lead to a leak of the SID phrases of users of the NEAR Wallet wallet. According to experts, wallet owners who chose email as a way to recover a secret phrase could be at risk. Hacxyk noted that with such a…
Recent Posts
- Chainalysis estimated the damage from hacking of cross-chain protocols since the beginning of the year at $ 2 billion
- Damage from hacking the Nomad cross-chain protocol was estimated at $8.9 million
- Solana linked a large-scale hacking with the provider of wallets Slope
- $4.8 million was withdrawn from ZB Bitcoin exchange wallets. Experts have not ruled out hacking
- Experts have confirmed the leakage of data from users of the Solana-Slope wallet. A similar bug was found in NEAR Wallet