Trust Wallet suffered a major security vulnerability! Do not import mnemonic phrases and upgrade to 2.69 as soon as possible, at least $6 million has been stolen

👤 energy009@Penny 📅 2026-04-03 02:33:28

Trust Wallet confirmed this morning that browser extension version 2.68 has a fatal vulnerability, which will cause on-chain losses and users must immediately upgrade to 2.69.
(Preliminary summary: CZ retweet detonated the Trust Wallet token TWT soaring by 40%; pointing to the era of 1 billion Web3 users)
(Background supplement: What is the "Wallet as a Service" WaaS launched by Trust Wallet, analysis of advantages and disadvantages, can it become mainstream in the future? )

Cryptocurrency wallet Trust Wallet A major security alert was issued at around 6 a.m. today (26th), confirming that version 2.68 of its browser extension has a serious vulnerability, leading to the outflow of user assets. On-chain detective ZachXBT tracking shows that the number of victims has reached hundreds, and the loss was first estimated at about $6 million.

For users who haven't already updated to Extension version 2.69, please do not open the Browser Extension until you have updated. This may help to ensure the security of your wallet and prevent further issues.
— Trust Wallet (@TrustWallet) December 26, 2025

Vulnerability details and loss scale

The official notice pointed out that the affected objects are users who have installed version 2.68 extensions on the mobile version. Trust Wallet emphasized in the announcement:

"We have released a patch for version 2.69, please all browser extension users to upgrade immediately."

If you are also a Trust Wallet user and have installed version 2.68, "Please do not import the mnemonic phrase" and it is best to upgrade through the official link of the Chrome Online App Store. Mnemonic phrases imported in a contaminated environment are best treated as leaks, and it is best to create a new wallet and migrate the balance (it is recommended that assets be transferred to other brand wallets before the official problem is completely solved).

The malicious script 4482.js sneaked in through official updates

It is understood that the attacker inserted a file named 4482.js during the packaging process and claimed to be used for "Analytics". When it detects that the user enters the mnemonic phrase, it sends the data to the registered domain metrics-trustwallet.com, and then uses automated scripts to quickly withdraw assets from the EVM compatible chain, Bitcoin and Solana.

At present, individual victims have reported losses ranging from tens of thousands to hundreds of thousands of dollars. We will continue to track the official next step for potential compensation.

Label：

policy

FB X YT IG

energy009@Penny

Blockchain and cryptoassets editor, focusing onpolicyDomain content analysis and insights

Comment (10)

Soren 85days ago

The current development of the industry requires more patience.

Linda 85days ago

The article's discussion of energy issues avoids important issues and minimizes them.

Florence 85days ago

The vision of "Internet of Value" is currently unaffordable.

Octavia 85days ago

Looking forward to more innovative practices in chain reform.

Mason 85days ago

If there are loopholes in the smart contract, can it be upgraded and repaired?

Diana 85days ago

Thanks for the popular science, very friendly to newbies.

Gabriel 85days ago

In the future, blockchain will pay more attention to privacy.

Upton 85days ago

The public chain landscape is still undecided, and there are still opportunities in the future.

Sierra 104days ago

The DAO organization will have more practices in the future.

Elsa 108days ago

Decentralization often comes at the expense of efficiency, which the article underestimates.

Trust Wallet suffered a major security vulnerability! Do not import mnemonic phrases and upgrade to 2.69 as soon as possible, at least $6 million has been stolen

Vulnerability details and loss scale

The malicious script 4482.js sneaked in through official updates

energy009@Penny

Comment (10)

Add comment

Related content

Hollywood director Carl Rinsch misappropriated Netflix investments to speculate in stocks and currencies. He once made $27 million in Dogecoin and now faces a 90-year sentence.

The EU's latest crypto tax law "DAC8 Directive" will take effect on New Year's Day, adopting the OECD crypto asset reporting framework to crack down on tax evasion

Russian darknet boss "Moriarty" Solana issues meme currency $MORI, runs 3.2 million channels and calls himself the crime emperor

Thailand approves USDT as a domestic trading medium, and stable currency payments are about to explode.

U.S. SEC Chairman: We are planning an "innovation exemption" for DeFi protocols and should not be punished for malicious use by others

If you don’t give me Bitcoin, I’ll blow up the building! Hyundai Group headquarters received a bomb threat email, and the suspect demanded 13 BTC

Popular content

The SUI on-chain protocol Cetus liquidity pool is suspected of being hacked! The trading pair abnormally plummeted by more than 70%

The Bank of England's plan to "limit stablecoin holdings" has caused public outrage: It will not work at all and will only fall behind the global encryption competition.

The U.S. SEC indicted Don Vo, the founder of Bitcoin mining company VBit: he fraudulently raised US$95.6 million and misappropriated US$48.5 million to give gambling gifts.

U.S. Bitcoin profits will be deducted 5% when repatriated to Taiwan! Trump plans to introduce new bill: tax on transfers from non-U.S. citizens

Do Kwon sentenced to 15 years, judge: tough sentence to stop next $40 billion LUNA disaster

The repeal of the IRS’s “DeFi Broker Rules” has been sent to Trump to be signed into law, a major victory for the crypto industry

Related sections

Popular content