{"id":74933,"date":"2024-03-30T12:43:33","date_gmt":"2024-03-30T16:43:33","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=74933"},"modified":"2024-03-30T12:44:32","modified_gmt":"2024-03-30T16:44:32","slug":"solana-users-urged-to-revoke-app-permissions-amid-drain-attack","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/solana-users-urged-to-revoke-app-permissions-amid-drain-attack\/","title":{"rendered":"Solana Users Urged to Revoke App Permissions Amid Drain Attack"},"content":{"rendered":"\n

Solana is allegedly facing large-scale drain attacks<\/a> tied to meme coins, with developers urging users to secure assets by revoking app permissions.<\/p>\n\n\n\n

\"Solana
Solana Users Urged to Revoke App Permissions Amid Drain Attack<\/figcaption><\/figure>\n\n\n\n

They advise users to protect their assets by removing permissions from their apps. There have been multiple claims of financial losses due to illegal access, purportedly stemming from a wave of drain attacks against the Solana ecosystem<\/a>. <\/p>\n\n\n\n

Blockchain developers have asked users on X to cancel their rights from decentralized applications to protect their assets from potential misuse by bad actors. <\/p>\n\n\n\n

While the exact source of the attack is still unknown, BONKbot, a trading bot on Telegram\r\n \r\n \r\n \r\n <\/g>\r\n \r\n \r\n \r\n <\/clipPath>\r\n <\/defs><\/svg><\/span><\/a> that functions on the Solana network, has been suggested by several as a possible trigger for the hack. <\/p>\n\n\n\n

Though they acknowledge that the “exploits” have surfaced inside the larger ecosystem, the project's developers have refuted any charges. <\/p>\n\n\n\n

\n

TLDR: BONKbot is SAFE – but there are exploits being triggered elsewhere in the ecosystem!

Our logs show that every user account being drained has previously exported their private keys. There are also non-BONKbot wallets being drained. BONKbot users who did not export their\u2026<\/p>— BONKbot (@bonkbot_io) March 29, 2024<\/use><\/svg><\/span><\/a><\/blockquote>

The victims whose wallets were compromised have previously exported their private keys<\/a>, according to remarks made by the BONKbot team. The team further stated that “BONKbot users who did not export their keys are SAFE,” emphasizing that users who abstained from taking such activities are unaffected. <\/p>\n\n\n\n

There have been previous instances of a major drain attack on the Solana ecosystem similar to this one. A significant ecosystem exploit that affected thousands of users and resulted in losses of over $5 million was publicized in October 2022. <\/p>\n\n\n\n

The event is said to have come from Slope Finance, and many of the impacted addresses are associated with its establishment, importation, or use in the mobile wallet app<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Solana is allegedly facing large-scale drain attacks tied to meme coins, with developers urging users to secure assets by revoking app permissions. They advise users to protect their assets by removing permissions from their apps. There have been multiple claims of financial losses due to illegal access, purportedly stemming from a wave of drain attacks […]<\/p>\n","protected":false},"author":43,"featured_media":74935,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21,11476],"tags":[12002,275],"class_list":["post-74933","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-hacks-and-scams","tag-hacks","tag-solana"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2024\/03\/croc_1711814285441.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/74933","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/43"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=74933"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/74933\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/74935"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=74933"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=74933"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=74933"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}