Buy CryptoMarketsSpotFuturesGOLDEarnEvent Center
More
Gold vs Crypto
The post Solana Wallet Hack Exposes $3M Loss Through Phishing Attack appeared on BitcoinEthereumNews.com. A recent security case has renewed concerns within the Solana ecosystem after a user lost more than $3 million in a sophisticated phishing incident. The breach exposed a little-known risk within Solana’s account structure and showed how attackers can alter wallet permissions without showing any visible change during signing.  How Attackers Exploit Solana’s Permission Framework SlowMist reported that the attacker gained control of the wallet by modifying its Owner permission through a deceptive signature request. The transaction showed no balance movement, which lowered suspicion.  Moreover, many Solana users assume their account ownership works like Ethereum’s EOAs. Hence, they do not expect ownership to change with a single signature. This misunderstanding creates room for attackers who design transactions that appear harmless while delivering high-risk operations. Additionally, experts note that Solana uses several account types, including normal accounts and PDAs. Token accounts operate under rules enforced by their token program.  These structures improve efficiency but introduce more areas for attackers to target. Significantly, the recent case involved several layers of permission manipulation, which allowed the attacker to route funds through multiple platforms and addresses. Complex Laundering Routes Show Evolving Phishing Methods Investigators at MistTrack traced the attacker’s movements and found rapid, multi-platform fund rotations. The route included cross-chain cycles, CEX deposits, and the reuse of DeFi assets.  Moreover, two major wallet hubs handled most of the transfers, showing a pattern seen in other advanced laundering schemes. The victim also had another $2 million locked in DeFi platforms. Relevant protocol teams helped recover those assets, showing the value of quick reporting. How Solana Users Can Reduce Risk Security firms emphasize caution. Users should verify URLs, confirm transaction details, and avoid interacting with unknown links. Additionally, they should maintain separate wallets for high-risk activities and store valuable assets offline. Moreover, they should avoid unlimited… The post Solana Wallet Hack Exposes $3M Loss Through Phishing Attack appeared on BitcoinEthereumNews.com. A recent security case has renewed concerns within the Solana ecosystem after a user lost more than $3 million in a sophisticated phishing incident. The breach exposed a little-known risk within Solana’s account structure and showed how attackers can alter wallet permissions without showing any visible change during signing.  How Attackers Exploit Solana’s Permission Framework SlowMist reported that the attacker gained control of the wallet by modifying its Owner permission through a deceptive signature request. The transaction showed no balance movement, which lowered suspicion.  Moreover, many Solana users assume their account ownership works like Ethereum’s EOAs. Hence, they do not expect ownership to change with a single signature. This misunderstanding creates room for attackers who design transactions that appear harmless while delivering high-risk operations. Additionally, experts note that Solana uses several account types, including normal accounts and PDAs. Token accounts operate under rules enforced by their token program.  These structures improve efficiency but introduce more areas for attackers to target. Significantly, the recent case involved several layers of permission manipulation, which allowed the attacker to route funds through multiple platforms and addresses. Complex Laundering Routes Show Evolving Phishing Methods Investigators at MistTrack traced the attacker’s movements and found rapid, multi-platform fund rotations. The route included cross-chain cycles, CEX deposits, and the reuse of DeFi assets.  Moreover, two major wallet hubs handled most of the transfers, showing a pattern seen in other advanced laundering schemes. The victim also had another $2 million locked in DeFi platforms. Relevant protocol teams helped recover those assets, showing the value of quick reporting. How Solana Users Can Reduce Risk Security firms emphasize caution. Users should verify URLs, confirm transaction details, and avoid interacting with unknown links. Additionally, they should maintain separate wallets for high-risk activities and store valuable assets offline. Moreover, they should avoid unlimited…

Solana Wallet Hack Exposes $3M Loss Through Phishing Attack

Author: BitcoinEthereumNews
Source: BitcoinEthereumNews
2025/12/05 22:29
2 min read
Ambire Wallet
WALLET$0.01001-3.65%
Moonveil
MORE$0.0001172-1.59%
ChangeX
CHANGE$0.00141857--%
LIKE
LIKE$0.00135-0.29%
Notcoin
NOT$0.0003583-6.64%
For feedback or concerns regarding this content, please contact us at [email protected]

A recent security case has renewed concerns within the Solana ecosystem after a user lost more than $3 million in a sophisticated phishing incident. The breach exposed a little-known risk within Solana’s account structure and showed how attackers can alter wallet permissions without showing any visible change during signing. 

How Attackers Exploit Solana’s Permission Framework

SlowMist reported that the attacker gained control of the wallet by modifying its Owner permission through a deceptive signature request. The transaction showed no balance movement, which lowered suspicion. 

Moreover, many Solana users assume their account ownership works like Ethereum’s EOAs. Hence, they do not expect ownership to change with a single signature. This misunderstanding creates room for attackers who design transactions that appear harmless while delivering high-risk operations.

Additionally, experts note that Solana uses several account types, including normal accounts and PDAs. Token accounts operate under rules enforced by their token program. 

These structures improve efficiency but introduce more areas for attackers to target. Significantly, the recent case involved several layers of permission manipulation, which allowed the attacker to route funds through multiple platforms and addresses.

Complex Laundering Routes Show Evolving Phishing Methods

Investigators at MistTrack traced the attacker’s movements and found rapid, multi-platform fund rotations. The route included cross-chain cycles, CEX deposits, and the reuse of DeFi assets. 

Moreover, two major wallet hubs handled most of the transfers, showing a pattern seen in other advanced laundering schemes. The victim also had another $2 million locked in DeFi platforms. Relevant protocol teams helped recover those assets, showing the value of quick reporting.

How Solana Users Can Reduce Risk

Security firms emphasize caution. Users should verify URLs, confirm transaction details, and avoid interacting with unknown links. Additionally, they should maintain separate wallets for high-risk activities and store valuable assets offline. Moreover, they should avoid unlimited approvals and review every permission request carefully.

Source: https://coinpaper.com/12892/solana-user-loses-3-m-as-hidden-wallet-permissions-exploited

Market Opportunity
Ambire Wallet Logo
Ambire Wallet Price(WALLET)
$0.01001
$0.01001$0.01001
-0.39%
USD
Ambire Wallet (WALLET) Live Price Chart
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact [email protected] for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
Tags:
#DeFi#CEX

You May Also Like

Why Cosmetic Boxes Matter for Beauty Brand Growth

Why Cosmetic Boxes Matter for Beauty Brand Growth

If you sell beauty products, you need cosmetic boxes for beauty brands. Many beauty brands spend on formulas but ignore the packaging. A plain or cheap box can
Share
Techbullion2026/03/26 23:04
Why The Green Bay Packers Must Take The Cleveland Browns Seriously — As Hard As That Might Be

Why The Green Bay Packers Must Take The Cleveland Browns Seriously — As Hard As That Might Be

The post Why The Green Bay Packers Must Take The Cleveland Browns Seriously — As Hard As That Might Be appeared on BitcoinEthereumNews.com. Jordan Love and the Green Bay Packers are off to a 2-0 start. Getty Images The Green Bay Packers are, once again, one of the NFL’s better teams. The Cleveland Browns are, once again, one of the league’s doormats. It’s why unbeaten Green Bay (2-0) is a 8-point favorite at winless Cleveland (0-2) Sunday according to betmgm.com. The money line is also Green Bay -500. Most expect this to be a Packers’ rout, and it very well could be. But Green Bay knows taking anyone in this league for granted can prove costly. “I think if you look at their roster, the paper, who they have on that team, what they can do, they got a lot of talent and things can turn around quickly for them,” Packers safety Xavier McKinney said. “We just got to kind of keep that in mind and know we not just walking into something and they just going to lay down. That’s not what they going to do.” The Browns certainly haven’t laid down on defense. Far from. Cleveland is allowing an NFL-best 191.5 yards per game. The Browns gave up 141 yards to Cincinnati in Week 1, including just seven in the second half, but still lost, 17-16. Cleveland has given up an NFL-best 45.5 rushing yards per game and just 2.1 rushing yards per attempt. “The biggest thing is our defensive line is much, much improved over last year and I think we’ve got back to our personality,” defensive coordinator Jim Schwartz said recently. “When we play our best, our D-line leads us there as our engine.” The Browns rank third in the league in passing defense, allowing just 146.0 yards per game. Cleveland has also gone 30 straight games without allowing a 300-yard passer, the longest active streak in the NFL.…
Share
BitcoinEthereumNews2025/09/18 00:41
US and UK Set to Seal Landmark Crypto Cooperation Deal

US and UK Set to Seal Landmark Crypto Cooperation Deal

The United States and the United Kingdom are preparing to announce a new agreement on digital assets, with a focus on stablecoins, following high-level talks between senior officials and major industry players.
Share
Cryptodaily2025/09/18 00:49

Trending News

More

The Growing Importance of Fintech Infrastructure Providers

RBA Projects $16.7B Annual Gain from RWA Tokenization

Zcash (ZEC) Price Pumped 1,200% in 3 Months – Then the Team Resigned and Influencers Went Silent

Nvidia Faces Class Action Over Alleged Crypto Mining Revenue Disclosure Gaps

BetFury is at SBC Summit Lisbon 2025: Affiliate Growth in Focus

Quick Reads

More

Why Does BEEG Suddenly Pump in 2026?

Why Meme Coins Like BEEG Can 10x Overnight in 2026?

How Macro and On-Chain Liquidity Are Shaping BEEG Price Movements in 2026

What's Actually Driving BEEG Price in 2026?

How Much BEEG Should You Actually Hold in 2026?

Crypto Prices

Bitcoin Logo

Bitcoin

BTC

$68,763.30
$68,763.30$68,763.30

-0.46%

Ethereum Logo

Ethereum

ETH

$2,060.01
$2,060.01$2,060.01

-0.51%

Solana Logo

Solana

SOL

$86.95
$86.95$86.95

-0.68%

Tether Gold Logo

Tether Gold

GOLD(XAUT)

$4,388.3
$4,388.3$4,388.3

-1.13%

XRP Logo

XRP

XRP

$1.3569
$1.3569$1.3569

-0.27%