🟥On December 25, blockchain investigator ZachXBT reported a series of unauthorized withdrawals from Trust Wallet users’ accounts. According to those affected, the transactions were executed without their consent. While the exact cause of the incident has yet to be confirmed, attention has focused on a recent update to the Trust Wallet Chrome extension, released just one day before the thefts were reported.
🟥The incident once again highlights the vulnerabilities of browser-based wallets that operate with elevated access permissions. Experts have previously warned that even legitimate extensions can be compromised through updates or third-party dependencies. In response, users are being advised to review account activity, revoke unnecessary permissions, and temporarily refrain from initiating new transactions until the situation is fully clarified.