Overview
- Trust Wallet says 2,596 wallet addresses were affected and roughly 5,000 claims have been filed, prompting a shift to accuracy over speed in validating real victims.
- Reimbursements have begun through an official claims portal, with users warned to avoid impostor support accounts and never share seed phrases or private keys.
- Initial findings indicate the malicious v2.68 Chrome extension was likely published via a leaked Chrome Web Store API key that bypassed internal release checks, and users are advised to update to v2.69.
- The firm expired release APIs for two weeks and had the data‑exfiltration domain suspended as forensic and on‑chain investigations continue.
- On‑chain trackers report about $4.25 million of the stolen funds moved through services including ChangeNOW, FixedFloat, KuCoin, and HTX, and Binance co‑founder Changpeng Zhao said verified losses will be fully covered.