On December 25, 2025, Trust Wallet experienced a significant security incident targeting its Chrome browser extension. Users reported unauthorized withdrawals totaling around $7 million across various cryptocurrencies, including Bitcoin (BTC), Ethereum (ETH), Solana (SOL), and others. The vulnerability was limited to version 2.68 of the extension, which had been released only a day earlier on December 24.
Details of the Attack
The breach appears to have involved a potential supply chain compromise, where malicious code was introduced to steal sensitive information, such as seed phrases, during wallet interactions. Blockchain investigator ZachXBT, first highlighted the issue on Telegram, observing rapid and unauthorized fund transfers.
On-chain analysis by Lookonchain showed that the attacker had already moved approximately $4.25 million of the stolen funds to platforms like ChangeNOW, FixedFloat, KuCoin, and HTX for laundering, leaving roughly $2.8 million in hacker-controlled wallets.
Source: @lookonchain (X)
Official Response and Reimbursement Promise
Trust Wallet promptly acknowledged the incident on X, confirming that only the browser extension version 2.68 was affected and that the mobile app remained secure. The team released a fixed version 2.69 and urged users to update immediately.
Binance founder CZ (Changpeng Zhao), whose company owns Trust Wallet, publicly stated: "So far, $7m affected by this hack. TrustWallet will cover. User funds are SAFU." This commitment ensures that affected users will be fully reimbursed through Binance's Secure Asset Fund for Users.
Source: @cz_binance (X)
Step-by-Step Guide to Secure Your Wallet
To protect your assets, follow these steps as soon as possible. First, avoid opening the Trust Wallet Browser Extension on your desktop to prevent any further risks. Then, access the Chrome Extensions panel by entering this address in your browser: chrome://extensions/id=egjidjbpglichdcondbcbdnbeeppgdph. Switch the toggle to "Off" for Trust Wallet if it is still enabled. Next, turn on "Developer mode" in the upper right corner. Click the "Update" button in the upper left to refresh your extensions. Finally, confirm that the version now displays 2.69, which is the secure update.
Additional Safety Recommendations
Beyond the update, consider moving any remaining funds to a new wallet if you believe your extension was compromised. Revoke any unnecessary token approvals using services like Revoke cash, and for larger holdings, opt for hardware wallets to add an extra layer of protection. This incident highlights the persistent risks associated with browser-based hot wallets, particularly from supply chain attacks.
Ongoing Investigation and Broader Implications
Trust Wallet is continuing its investigation into how the malicious code was introduced. While the swift response and reimbursement pledge have helped mitigate user concerns, the event serves as a reminder to always verify updates from official sources and maintain strong security practices in the cryptocurrency space.
Disclaimer: The views and analysis presented in this article are for informational purposes only and reflect the author’s perspective, not financial advice.
