SlowMist: Beware of Solana Wallet Owner Authority Tampering Attack

By: theblockbeats.news|2025/12/03 11:45:54

Share

copy

BlockBeats News, December 3rd. SlowMist Security Team released a security advisory regarding a recent phishing attack incident. A user fell victim to a phishing attack, resulting in the transfer of the account's Owner permission. The user attempted to revoke the authorization but was unable to do so. The user's assets worth over $3 million were stolen, with an additional $2 million worth of assets stored in a DeFi protocol that could not be transferred (currently, this part of the assets worth around $2 million has been successfully rescued with the assistance of the related DeFi protocol). This attack was not the traditional "authorization theft" but rather a replacement of the core permission (Owner permission) by the attacker, rendering the victim unable to transfer funds, revoke authorization, or operate DeFi assets despite the funds "appearing normal" but being beyond their control.

The attacker exploited two counterintuitive scenarios to successfully deceive the user into clicking:

1. Usually, when signing a transaction, the wallet would simulate the execution result of the transaction. If there were any fund changes, it would be displayed on the user interface. However, the attacker's carefully crafted transaction showed no fund changes;

2. In the traditional Ethereum EOA account, the ownership is controlled by the private key. Users subjectively were unaware that Solana has a feature that can modify account ownership.

SlowMist reminds users to be vigilant when authorizing signatures and to confirm whether there are hidden operations such as modifying high-risk permissions like Owner in them.

You may also like

Top US Journalist Minting on Base, Attention Completes Monetization Loop

Top US Journalist Minting on Base, Attention Completes Monetization Loop

Massive Online Hype, Musk, and Whales' frequent interaction. Nick Shirley conducted a live demonstration of real-world traffic directly monetizing on-chain, from a PR storm to on-chain monetization.

Whale Withdraws 2,218 ETH from Kraken Sparking Market Interest

Whale Withdraws 2,218 ETH from Kraken Sparking Market Interest

Key Takeaways A massive withdrawal of 2,218 ETH, 37.1 million SKY, and 4,772 AAVE occurred from Kraken. The…

Whale Trader Reaps Significant Profits from Ethereum Sales

Whale Trader Reaps Significant Profits from Ethereum Sales

Key Takeaways A whale, identified as address “0xa339”, has executed a large sale of 50,623 ETH. The total…

Whale Withdraws Millions in Ethereum and Other Tokens from Kraken

Whale Withdraws Millions in Ethereum and Other Tokens from Kraken

Key Takeaways A whale has withdrawn 2,218 ETH, valued at approximately $6.52 million, from Kraken. The whale also…

ZKC Price Surge Shakes Crypto Market

ZKC Price Surge Shakes Crypto Market

Key Takeaways ZKC (Boundless) experienced a significant 20.72% increase over the past 24 hours, reaching $0.14. The transition…

Smart Trader Closes Ethereum Positions, Faces $3.4 Million Loss

Smart Trader Closes Ethereum Positions, Faces $3.4 Million Loss

Key Takeaways Smart trader pension-usdt.eth closed a 30,000 ETH short position, incurring a $3.4 million loss. Despite this…

XRP ETFs Attract Institutional Interest as Inflows Surpass Expectations

XRP ETFs Attract Institutional Interest as Inflows Surpass Expectations

Key Takeaways XRP spot ETFs have experienced substantial inflows since their launch in November 2025, surpassing $1.1 billion.…

Whale Shifts to Massive Short Positions in Cryptocurrency Market

Whale Shifts to Massive Short Positions in Cryptocurrency Market

Key Takeaways A crypto whale transitioned from long to short positions, involving significant assets amounting to over $91…

Japanese Central Bank Signals Potential Interest Rate Hikes Impacting Crypto Market

Japanese Central Bank Signals Potential Interest Rate Hikes Impacting Crypto Market

Key Takeaways The Japanese Central Bank has indicated potential interest rate hikes as the yen weakens, affecting the…

Bitcoin Reaches $90,000 Amid Geopolitical Tensions and Oil Price Surge

Bitcoin Reaches $90,000 Amid Geopolitical Tensions and Oil Price Surge

Key Takeaways Bitcoin recently surged past $90,000, driven by heightened geopolitical tensions and rising oil prices. The cryptocurrency…

Cybersecurity Firm Warns of Shai-Hulud 3.0 Threatening the NPM Ecosystem

Cybersecurity Firm Warns of Shai-Hulud 3.0 Threatening the NPM Ecosystem

Key Takeaways SlowMist’s CISO has issued a warning about Shai-Hulud 3.0, a significant threat targeting the NPM ecosystem…

FLOW Token Plummets Amid Market Volatility and Regulatory Moves

FLOW Token Plummets Amid Market Volatility and Regulatory Moves

Key Takeaways FLOW token has experienced a dramatic decline within the last 24 hours. Market volatility and profit-taking…

Crypto Whale Strategically Bets on Bitcoin, Ethereum, Solana Shorts

Crypto Whale Strategically Bets on Bitcoin, Ethereum, Solana Shorts

Key Takeaways A prominent crypto whale has launched a substantial $243 million short position across Bitcoin, Ethereum, and…

Hong Kong Implements Basel Crypto Standards for Banking

Hong Kong Implements Basel Crypto Standards for Banking

Key Takeaways Hong Kong Monetary Authority will enforce the Basel crypto asset regulatory standards starting January 1, 2026.…

Plasma Token Surges 14.3% as Stablecoin Blockchain Gains Traction

Plasma Token Surges 14.3% as Stablecoin Blockchain Gains Traction

Key Takeaways Plasma Token’s Price Surge: The price of Plasma (XPL) surged by 14.3% over the last 24…

ZEC Price Soars Amidst Market Frenzy as Major Positions Shift

ZEC Price Soars Amidst Market Frenzy as Major Positions Shift

Key Takeaways ZEC witnessed a price surge of 14.36% within 24 hours, reaching $512.25 on December 27. The…

Uniswap’s Proposal Drives UNI Price Surge Over 4%

Uniswap’s Proposal Drives UNI Price Surge Over 4%

Key Takeaways Uniswap’s UNI token saw a price spike of 4.35% in the last 24 hours, now priced…

WhiteWhale Surges on Solana: A Meme Coin’s Meteoric Rise Explained

WhiteWhale Surges on Solana: A Meme Coin’s Meteoric Rise Explained

Key Takeaways WhiteWhale Meme Coin achieved a remarkable surge, with its market cap passing $35 million as of…

Top US Journalist Minting on Base, Attention Completes Monetization Loop

Massive Online Hype, Musk, and Whales' frequent interaction. Nick Shirley conducted a live demonstration of real-world traffic directly monetizing on-chain, from a PR storm to on-chain monetization.

Whale Withdraws 2,218 ETH from Kraken Sparking Market Interest

Key Takeaways A massive withdrawal of 2,218 ETH, 37.1 million SKY, and 4,772 AAVE occurred from Kraken. The…

Whale Trader Reaps Significant Profits from Ethereum Sales

Key Takeaways A whale, identified as address “0xa339”, has executed a large sale of 50,623 ETH. The total…

Whale Withdraws Millions in Ethereum and Other Tokens from Kraken

Key Takeaways A whale has withdrawn 2,218 ETH, valued at approximately $6.52 million, from Kraken. The whale also…

ZKC Price Surge Shakes Crypto Market

Key Takeaways ZKC (Boundless) experienced a significant 20.72% increase over the past 24 hours, reaching $0.14. The transition…

Smart Trader Closes Ethereum Positions, Faces $3.4 Million Loss

Key Takeaways Smart trader pension-usdt.eth closed a 30,000 ETH short position, incurring a $3.4 million loss. Despite this…

Popular coins

Latest Crypto News

08:46

Lighter's Pre-Market Fully Diluted Valuation (FDV) is $3.4 billion, with the corresponding event probability on Polymarket being only 47%.

BlockBeats News, December 29th, according to market information, the pre-market price of Lighter (LIT) is now reported at $3.423, with a corresponding FDV of $34.23 billion.On the other hand, the probability on Polymarket of LIT's FDV exceeding $30 billion one day after listing is only 47%. As of th...

08:16

The USDC Treasury has burned over 51 million USDC on the Solana chain

BlockBeats News, December 29, according to Whale Alert (@whale_alert) monitoring, the USDC Treasury burned over 51 million USDC on the Solana chain 10 minutes ago.

08:16

The "Long Liquidation to Short" Whale Takes Profit on SOL Short, Gaining $58,300

BlockBeats News, December 29th, according to Hyperinsight monitoring, a "Long Liquidation to Short" whale took profit on a short position in SOL, earning $58,300. Currently, the whale is still shorting $460.7 million worth of ETH with 18x leverage, with an unrealized loss of $71,000; and shorting $7...

08:16

This morning, the RVV team deposited tokens worth approximately $870,000 into a CEX.

BlockBeats News, December 29, according to onchainschool.pro monitoring, the RVV team's main wallet deposited tokens worth about $870,000 into a CEX around 2 a.m. this morning. Similar large transfers have been frequent in the past month.At the time of writing, RVV has surged by 31.37% in the past 2...

08:16

Opinion launched just 55 days ago, with a trading volume surpassing $10 billion and over $110 million in open interest.

BlockBeats News, December 29th, according to Defilama data, Predict Market has experienced rapid growth after being live for 55 days, with a total nominal trading volume surpassing $10 billion, ranking first in the industry in weekly trading volume; current open interest exceeds $110 million, second...

Customer Support：@weikecs

Business Cooperation：@weikecs

Quant Trading & MM：[email protected]

VIP Services：[email protected]

App