Trust Wallet Users Hit by Mystery Hack as Losses Exceed $6 Million

A wave of alarm spread across the crypto community after reports emerged that hundreds of Trust Wallet users had their funds drained in what appears to be a coordinated and still-unexplained exploit. The incident, which surfaced on social media late last week, has already resulted in losses estimated at more than $6 million across multiple blockchains, raising fresh concerns about wallet security and update-related risks.

Reports Point to Browser Extension Vulnerability

Blockchain security researcher ZachXBT was among the first to flag the issue publicly, noting that affected users reported unauthorized withdrawals from their Trust Wallet accounts. As reports accumulated, it became clear the attack was not isolated. Victims collectively lost millions of dollars in assets spanning Solana-based tokens, EVM-compatible tokens, and Bitcoin.

I spoke with one of the TW team members anonymously, and from what I know, if you have the TW extension in Google and you have money there, disconnect the computer on which it is installed from the network and the Internet. This will minimise damage. https://t.co/zmUNzxaW7g

— Vladimir S. | Officer's Notes (@officer_secret) December 25, 2025

While Trust Wallet has not yet confirmed the root cause, attention has focused on a recent update to the wallet’s browser extension released around December 24. Some researchers and users believe the incident may stem from a supply chain-style attack embedded in that update. According to claims shared on X, the update may have introduced hidden code disguised as analytics functionality, allegedly capable of transmitting wallet data externally.

Several affected users reported that the suspicious transactions occurred shortly after they imported seed phrases into the browser extension, lending weight to concerns that sensitive recovery data may have been compromised. These claims have not been independently verified, but the consistency of user reports has intensified scrutiny of the extension’s recent changes.

Calls for Caution and Accountability Grow

As uncertainty persists, security experts are urging Trust Wallet users to take precautionary steps. Threat researcher Vladimir S. advised users who have the Trust Wallet extension installed to disconnect affected devices from the internet as a temporary measure to reduce further risk, particularly if funds remain in connected wallets.

ZachXBT has also called on Trust Wallet to address the situation transparently and consider compensating victims if the breach is ultimately traced back to an internal issue or faulty update. For now, users are left waiting for an official response and a clear explanation of how the attack occurred.

The incident serves as a stark reminder that even widely used self-custody wallets are not immune to complex attack vectors, especially those tied to software updates and third-party dependencies. Until more details emerge, heightened caution around wallet extensions and seed phrase handling remains critical.

Make money without lifting your fingers: Start using a world-class auto trading solution.

EightCap, your trusted Partner in CFDs, Cryptocurrencies and Stocks.