Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
According to a message posted by Wasabi Wallet on Twitter, users have reported that a coordinator named WasabiCoordinator is gradually stealing user funds through a complex attack. Wasabi Wallet advises all users connected to this coordinator to immediately stop CoinJoin operations and announces that a new version will be released soon to prevent such attacks. Subsequently, Wasabi Wallet tweeted that there were three types of attacks in this incident: attacks on free coordinators, supply chain (GitHub) compromise, user-targeted attacks. Attack method (per SlowMist): Security Vulnerability. Reported loss: -.
- chain
- —
- protocol
- Wasabi Wallet
- bug_class
- unknown
- date_occurred
- 2024-07-10
- loss_usd
- —
- source_id
- sm:wasabi-wallet::2024-07-10