2025-12-26 12:24:47

On December 26th, on-chain data monitoring revealed a serious asset theft incident. According to security researcher ZachXBT's tracking, a well-known wallet platform's browser extension was found to have a high-risk logical vulnerability, causing hundreds of users to be affected, with stolen assets totaling over $6 million.

After the incident was exposed, the platform's official immediately issued the highest level of security alert. The technical team’s tracing confirmed that the issue was in version 2.68 of the browser extension — this version contained a serious logical flaw, providing hackers with an opportunity. They could easily transfer assets through this vulnerability.

The official then issued a mandatory instruction: all users using version 2.68 must immediately disable the extension and then download the update to version 2.69 from the Chrome Web Store to completely patch this vulnerability. This is currently the only solution to protect account security. If you are still using the old version, now is the time to act.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

5 Likes

Reward
5
5
Repost
Share

Comment

0/400

GrayscaleArbitrageur

· 8h ago

Oh no, another extension issue, 6 million USD just gone? Hurry up and update to 2.69, don't become the next victim These days, using a wallet has to be done with caution How did those people in version 2.68 review pass? It's really outrageous Already updated, but I still feel the wallet ecosystem isn't secure enough Hackers are truly everywhere; this time they got caught again Still a bit uneasy after updating, I think I need to switch to a more secure solution This is the price of decentralization, if something goes wrong, you have to take the blame yourself Bro, quickly check your version, don’t just wait foolishly A version number can make someone go back to the Stone Age overnight

View OriginalReply0

StablecoinSkeptic

· 8h ago

$6,000,000 just disappeared... I really need to check my version, I'm genuinely scared. It's again the browser extension's fault—why are these small things always the easiest to have issues? ZachXBT has cracked another big case; his tracking ability is impressive. Update to 2.69 immediately, or I'll be feeling uneasy—hackers are watching. This is why I never trust these wallets... self-custody is more reliable. Can a two minor version difference have such a big vulnerability? The development team needs to reflect on this. Looks like I need to transfer more assets to my cold wallet; hot wallets are too risky.

View OriginalReply0

DaoDeveloper

· 8h ago

ngl, 6m gone just like that... logic flaw in v2.68 is a pretty brutal reminder that browser extensions are basically asking to get pwned. the composability tradeoff here is real - convenience vs security, and we're getting rekt on both sides apparently

Reply0

RooftopVIP

· 8h ago

$6 million just disappeared like that? This is too outrageous, hurry up and update the version, brothers --- It's the browser extension again causing trouble, always like this... Damn version 2.68 --- I told you not to trust these wallet plugins, a single vulnerability and you're wiped out --- ZachXBT has done it again, this guy's intuition is really sharp, if he hadn't exposed it, who would have known --- Take action now, update to 2.69, or the next one to get screwed over will be you --- No wonder the on-chain transactions have been so strange these days, it turns out they were hacked long ago --- How did version 2.68 pass the review... major problem --- Hundreds of people have been robbed, this matter needs to be blown up

View OriginalReply0

HalfBuddhaMoney

· 8h ago

6 million dollars lost, this is why I never use browser plugins. It's too dangerous. --- Another extension vulnerability. I don't even dare to install wallet extensions on the browser anymore. Mobile is truly safer. --- Hurry up and update to 2.69. What era are we in that there are still such outrageous logical bugs? --- I just want to know how this team tested it. Only after losing 6 million dollars did they find the problem? --- Once again reminding us that wallet security really can't be taken lightly. A single version number can lead to significant losses.

View OriginalReply0