{"id":204515,"date":"2025-12-28T06:03:21","date_gmt":"2025-12-28T06:03:21","guid":{"rendered":"https:\/\/www.newsbeep.com\/nz\/204515\/"},"modified":"2025-12-28T06:03:21","modified_gmt":"2025-12-28T06:03:21","slug":"trust-wallet-users-at-risk-zachxbt-flags-security-warning","status":"publish","type":"post","link":"https:\/\/www.newsbeep.com\/nz\/204515\/","title":{"rendered":"Trust Wallet Users at Risk? ZachXBT Flags Security Warning"},"content":{"rendered":"

Blockchain investigator ZachXBT reported on December 25 that multiple Trust Wallet users experienced unauthorized fund outflows within the past few hours.\u00a0<\/p>\n

Affected users say assets were drained from their wallet addresses without approval.<\/p>\n

Sponsored<\/p>\n

SponsoredMajor Security Warning For Trust Wallet Users?<\/p>\n

According to ZachXBT, the exact root cause remains unconfirmed. However, the timing has raised concerns. Today\u2019s incidents followed a recent update to Trust Wallet\u2019s<\/a> Chrome extension that was released a day earlier.\u00a0<\/p>\n

ZachXBT<\/a> has begun collecting wallet addresses linked to the suspected thefts and asked affected users to come forward as the investigation continues.<\/p>\n

\"\"ZachXBT Issues Community Alert for Trust Wallet Users on His Telegram Group<\/p>\n

Trust Wallet<\/a> has since confirmed a security incident affecting Trust Wallet Browser Extension version 2.68 only. <\/p>\n

In a public statement, the company said users running version 2.68 should disable the extension immediately and upgrade to version 2.69 via the official Chrome Web Store.<\/p>\n

We\u2019ve identified a security incident affecting Trust Wallet Browser Extension version 2.68 only. Users with Browser Extension 2.68 should disable and upgrade to 2.69.<\/p>\n

Please refer to the official Chrome Webstore link here: https:\/\/t.co\/V3vMq31TKb<\/a><\/p>\n

Please note: Mobile-only users\u2026<\/p>\n

\u2014 Trust Wallet (@TrustWallet) December 25, 2025<\/a>
\nSponsored<\/p>\n

SponsoredChrome Extensions Continue to Drive Wallet Security Concerns<\/p>\n

Chrome extensions operate<\/a> with elevated permissions. Security researchers have repeatedly warned that a single malicious update or compromised dependency can expose users to significant risk.<\/p>\n

Recent months have already seen several high-profile extension-related wallet threats.\u00a0<\/p>\n

Security firms previously flagged<\/a> fake wallet extensions designed to capture seed phrases, allowing attackers to fully recreate wallets and drain funds later.\u00a0<\/p>\n

\"\"Recently Reported Fake Chrome Extensions that Drain Crypto Wallets. Source: The Hacker News<\/a><\/p>\n

In other cases, malicious trading \u201chelper<\/a>\u201d extensions quietly modified transaction instructions, siphoning small amounts of crypto each time a user approved a swap.<\/p>\n

More broadly, cybersecurity researchers have documented campaigns involving seemingly legitimate browser extensions that were later updated to inject scripts, reroute traffic, or harvest sensitive data.\u00a0<\/p>\n

While not always crypto-specific, such capabilities can be repurposed to target wallet sessions<\/a>, sign-in flows, or transaction approvals.<\/p>\n

Against that backdrop, the Trust Wallet reports have triggered immediate concern across the crypto community.\u00a0<\/p>\n

Users are being urged to review recent transactions, revoke unnecessary permissions, and avoid signing new transactions until more clarity emerges.\u00a0<\/p>\n

Those who suspect compromise are advised to move remaining funds to new wallets created from fresh seed phrases.<\/p>\n