Solana Wallet Hacks — A Timeline
At around 7:30pm EST on Tuesday night, reports began flooding in that somehow, Solana wallets were being completely drained:
“Some sort of HUGE ecosystem hack going on across #Solana $sol right now!
Shit tons of wallets being drained.
If you are using a hot wallet like Phantom then consider sending funds to your hardware wallet or even to an exchange account until we find out what is going on!” -@TheCryptoLark
“ONGOING EXPLOIT ACROSS MANY SOLANA DAPPS
There are many gambling sites and NFT mint sites that are
suspected to be involved in this attack. Millions of dollars are currently being drained from wallets.” -@solblaze_org
An hour later, the Solana Foundation acknowledged the attack on Twitter:
“Engineers from multiple ecosystems, with the help of several security firms, are investigating drained wallets on Solana. There is no evidence hardware wallets are impacted.” -@solanastatus
By midnight, it was rumored that white hat hackers were actually DDoSing RPC nodes to help Solana:
“UPDATE: Several #Solana RPC nodes are offline after reportedly being DDoS attacked to slow down an ongoing exploit that drained millions of dollars from thousands of users.” @WatcherGuru
As of early morning Wednesday, the attacks are still ongoing. More than 7,500 wallets have been compromised to the tune of $6M+. At this time, it appears that Phantom and Slope wallet users are the major victims.
The latest from the Solana Foundation as of 3:00am EST indicates they still haven’t gotten to the bottom of it: “If your wallet was one of the 7,767 impacted please complete this survey — engineers are investigating the root cause.” -@SolanaStatus
If you use either a Phantom or a Slope wallet, or have any Solana on a hot wallet for that matter, the safest course of action is to move your tokens to a hard wallet or CEX while we await further news and resolutions from the Solana team.