Trust Wallet has confirmed a security incident involving a browser extension that affected approximately $7 million and is committed to providing a 100% refund to affected users.
The issue focuses on a specific version of the extension, while users of only the mobile app are unaffected. Trust Wallet is finalizing the remediation and refund process, and is warning of the risk of related scams during this sensitive period.
- The issue is limited to Trust Wallet Browser Extension version 2.68; other versions and mobile users are not affected.
- Approximately $7 million was affected, and Trust Wallet is committed to fully refunding affected users.
- Users are advised to disable v2.68 and manually update to v2.69, and to be wary of scams impersonating support.
Trust Wallet confirms $7 million has been affected and will issue refunds.
Trust Wallet stated that approximately $7 million was affected by the security incident related to the browser extension and that it will refund all affected users.
In an update on December 26th, Trust Wallet affirmed that it is prioritizing support for affected users and completing the necessary remediation steps. The company stated that it will provide further guidance once the refund process is finalized.
Trust Wallet emphasized that the affected area has been identified and users who only use the mobile app are not at risk. The company also maintained that it will continue to update information as more investigation data becomes available.
The issue is limited to Trust Wallet Browser Extension v2.68.
The issue has been confirmed to only affect version 2.68 of the Trust Wallet browser extension; other versions are unaffected.
Trust Wallet previously announced on its official channel that the issue stemmed from a security vulnerability affecting version 2.68 of the Chrome extension. XEM the announcement on the Trust Wallet account on X.
Users running this version are advised to disable it immediately and upgrade to v2.69, described as a secure release. Trust Wallet also clarifies that this only affects mobile users and other utility versions are unaffected.
Technically, Trust Wallet has not disclosed the root cause. However, the company reiterated that the impact is limited to a single extension version.
The appearance of funds being withdrawn after entering the Seed Phrase raises suspicions.
Reports indicate that some wallets were debited immediately after users entered the Seed Phrase into the extension, raising suspicions of malicious activity in the update.
The incident attracted attention after on-chain investigator ZachXBT pointed out signs of suspicious activity. Information then emerged suggesting that the wallet was "drained" shortly after users imported the Seed Phrase into the extension.
Some security-focused developers also argue that the recent update may have introduced malicious behavior, raising concerns about supply-chain chain . This type of risk is particularly dangerous for crypto wallets because updates can spread quickly and have a large-scale impact.
This is a solution for users using Browser Extension v2.68.
If you are using the Trust Wallet Browser Extension v2.68, avoid opening the extension, disable it in Chrome, and manually update to v2.69.
In the following instructions, Trust Wallet users with version 2.68 should not open the extension, go to Chrome's extension management section to disable it, and then manually update to version 2.69.
Trust Wallet also warns users not to follow messages or instructions that do not come from official channels, as secondary scams may occur that exploit the incident to gain access to assets. During the refund process, the risk of fraudulent "support" or "verification" requests often increases significantly.
The company stated that it is continuing its investigation and will provide further updates once the refund process is complete.
Browser extension security risks and lessons for crypto wallets.
The incident demonstrates that browser extensions can become a major weakness of crypto wallets, especially when supply-chain risks cause vulnerabilities to spread through updates.
Although the scope was described as controlled, this event highlights the pressure to maintain security for extensions, where a single release change can quickly impact a large number of users.
In terms of operations, the practical lesson is: update to the correct version that is announced as safe, limit manipulation with Seed Phrase, and only trust instructions from official channels. When incidents occur, "spin-off scams" often target panic by requesting Seed Phrase, signing transactions, or downloading fake installation files.
Frequently Asked Questions
How much money was affected by the Trust Wallet incident, and is a refund possible?
Trust Wallet confirms that approximately $7 million has been affected and is committed to providing full refunds to all affected users. They are currently finalizing the refund process and will send further instructions.
Which versions are affected and who is not?
The issue is believed to be limited to Trust Wallet Browser Extension version 2.68. Users who only use the mobile app and users of other extension versions have been notified that they are not affected.
What should I do if I'm using extension v2.68?
Trust Wallet recommends not opening the extension, disabling it in Chrome's extension management section, and then manually updating to version 2.69, while avoiding any instructions not from the official channel.
