Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
@alxlpsc disclosed on medium that MetaMask has serious privacy leaks. The vulnerability mainly uses MetaMask to automatically load NFT image URLs. Basic attack idea: the attacker can set the URI of the NFT to a server URL that he can control, and transfer the NFT to the target account; when the user logs in to MetaMask, MetaMask will automatically scan the NFT owned by the account, and initiate a pointer to The HTTP request to the attacker's server; the attacker can obtain the victim's IP information from the access log. Attack method (per SlowMist): Information Leakage. Reported loss: -.
- chain
- —
- protocol
- MetaMask
- bug_class
- unknown
- date_occurred
- 2022-01-20
- loss_usd
- —
- source_id
- sm:metamask::2022-01-20