Trust Wallet has confirmed a security breach affecting its browser extension after hackers exploited a flaw that allowed them to drain approximately $7 million from hundreds of user wallets across multiple blockchain networks.
The incident occurred on December 25, 2025, and was linked to Trust Wallet’s browser extension version 2.68.
According to initial findings, malicious code embedded in a recent update enabled attackers to steal sensitive data following seed phrase imports, giving them access to user funds.
The breach impacted wallets operating on the Ethereum, Bitcoin, and Solana blockchains, highlighting the cross-chain nature of the vulnerability.
Blockchain investigator ZachXBT was the first to flag unusual activity and trace the losses to the compromised extension update.
His findings pointed to malicious code execution immediately after users imported seed phrases, a critical security operation in wallet setup and recovery.
Trust Wallet responded by releasing a patched version, 2.69, and urged all users to update immediately. The company also advised affected users to revoke permissions, migrate funds where necessary, and follow additional security guidance while the investigation continues.
In a public statement, Trust Wallet committed to fully reimbursing all affected users. This assurance was reinforced by Changpeng Zhao, widely known as CZ, who confirmed that user funds would be covered.
“So far, $7m affected by this hack. Trust Wallet will cover. User funds are SAFU. Appreciate your understanding for any inconveniences caused,” CZ said in a post on X.
The Trust Wallet team disclosed that it is still investigating how the malicious update was approved and submitted, raising questions around software review processes and supply-chain security in crypto wallet development.
Trust Wallet is affiliated with Binance, one of the world’s largest cryptocurrency exchanges, and is widely used by retail investors for self-custody of digital assets.
The incident adds to growing concerns around browser-based wallet security, particularly as attackers increasingly target update mechanisms rather than direct smart contract exploits.
Naijaonpoint notes that while the financial losses are significant, the rapid patch deployment and reimbursement commitment may help limit long-term damage to user confidence.