SOL Hack Update: Exploit Allegedly Tied To A Slope Finance Bug; Slope Reacts
Pandemonium spread within the crypto community from the early hours of August 3 till the close of the day, due to the multimillion dollar hack that drained over $6 million from most Solana users’ wallets.
Solana was understandably blamed for the exploit, despite limited information on the nature of the mechanism employed. However, an update on the matter has allegedly disclosed that Solana shares no blame in the exploit, revealing that software bugs emanated from a third party wallet provider.
Solana revealed there was no bug in its core code
Amidst the commotion pumped into the space, Solana revealed that there appears to be no bug in the network’s core code, in a tweet a few hours after the hack was brought to light, highlighting that the exploit might have had to do with third party wallet applications. This conclusion came after an investigation was made on the matter.
Shortly after the previous update, with more information coming to limelight, Solana disclosed that the addresses impacted used Slope wallet applications at some point. However, it was noted that Slope hardware wallets were not affected, fueling the already established belief that cold wallets are preferable to hot wallets in terms of security.
“While the details of exactly how this occurred are still under investigation, but private key information was inadvertently transmitted to an application monitoring service,” SolanaStatus (@solanastatus) added, “there is no evidence the Solana protocol or its cryptography was compromised.”
Slope allegedly stored users’ private key information in plain text
Following the series of investigations that disclosed Slope Finance’s unique involvement in the exploit, the platform released a statement highlighting facts that had been established on the matter and actions the team is taking to ensure core points of weakness are identified and rectified.
As previously reported, a large amount of Phantom wallets were also compromised in the hack. Addressing the issue, Phantom said that the Phantom addresses affected had been imported to and from Slope.
Slope admitted that a sizable amount of wallets on the platform was impacted in the hack. The platform mentioned that they have a theory as to what caused the attack, but “nothing is yet firm,” also stating that its staff and founders’ wallets were affected as well.
Unconfirmed reports suggest that the exploit originated from Slope’s security negligence. Developers on Twitter mentioned that Slope allegedly stored users’ private keys in plain text at some point which were inadvertently sent to an app monitoring service.
- SEC Issues Guidance Enabling Ripple, Coinbase, BitGo to Qualify as Custodians
- Fed’s Goolsbee Cites Inflation Worries in Case Against Further Rate Cuts
- David Schwartz To Step Down as Ripple CTO, Delivers Heartfelt Message to XRP Community
- Michael Saylor Reveals Strategy’s Endgame To Accumulate $1 Trillion Bitcoin For Its Treasury
- CZ Hints at ‘Uptober’ Bitcoin Rally Following Green September
- SUI Price Eyes $4.5 as Coinbase Futures Listing Sparks Market Optimism
- Chainlink Price Holds $20 Support Amid Tokenization With DTA Standard Progress – Is $47 Next?
- Analyst Predicts Dogecoin Price Surge as DOGE ETF AUM Hits $20M
- Ethereum Price Eyes $8,600 As Institutions And Whales Double Down
- Dogecoin Price Prediction – Chart Set-Up Highlights Perfect Buying Opportunity With Outflows Backing $0.45
- Bitcoin Price Set to Rebound Ahead of US Government Shutdown, NFP Data
Why Trust CoinGape
CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights Read more…to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.
