An investigation of Tuesday Private wallet exploit within the Solana SOL/USD Ecosystem unveiled this Solana wallet Tilt was to blame.
What happened: The root cause of the attack was an accidental leak of users’ private keys from the backend of Slope Wallets, Solana Status said on Wednesday.
This exploit has been isolated to a wallet on Solana, and hardware wallets used by Slope remain secure.
While the exact details of this are still being investigated, private key information was inadvertently submitted to an application monitoring service. 2/3
— Solana Status (@SolanaStatus) August 3, 2022
“There is no evidence that the Solana protocol or its cryptography has been compromised,” Solana said on Twitter.
The private keys were compromised because Slope accidentally shared seed phrases with an application monitoring service, Solana said.
Slope issued a statement addressing the breach, saying they have “some hypotheses” about the nature of the breach, but “nothing is final yet.”
Meanwhile, on-chain analysts speculated that the exploit was possible because hackers gained access to user seed phrases that Slope used to log into its central servers.
Correction – The Slope wallet didn’t send seed phrases to external partners, but may have logged them on their own central servers. Sorry for getting a little ahead of myself, the autopsy is still in progress. Wait for an announcement from the team for real confirmation.
— foobar (@0xfoobar) August 3, 2022
“I would advise anyone who has touched Slope to regenerate their seed phrase in another wallet as soon as possible.” said Solana Laboratories co-founder Anatoly Yakovenko.
Price promotion: At press time, SOL was trading at $39.51, up 2.42% over the past 24 hours, according to data from Gasoline Pro.