The world of cryptocurrencies is once again shaken by a major incident. Trust Wallet, one of the most popular crypto wallets, had to postpone a crucial update after a malicious version of its Chrome extension was discovered. This event raises questions about the security of crypto tools and user trust.
In brief
- Trust Wallet is postponing a crucial update to its Chrome extension after a hack stole $7 million from 2,596 users.
- The Trust Wallet hack exploits a stolen API key and a vulnerability linked to the “Sha1-Hulud” incident.
- The year 2025, marked by repeated hacks, highlights the urgency of securing crypto tools to avoid further postponements.
Trust Wallet, an update postponed, the crypto ecosystem on alert
On December 24, 2025, Trust Wallet was forced to temporarily remove its Chrome extension after a corrupted version (2.68) was discovered. Indeed, this malicious update enabled the theft of $7 million from 2,596 crypto wallets. More than 2,630 reimbursement claims have been recorded, some of which are suspected of being fraudulent.
To this end, Éowyn Chen, CEO of Trust Wallet, confirmed that the priority was to secure crypto users before deploying a new version (2.69). This situation has highlighted the vulnerabilities of browser extensions, often targeted by cybercriminals. Therefore, Google is working with Trust Wallet to resolve this flaw and avoid new incidents.
The incident reminds us of the importance of vigilance! Especially during periods of high activity such as the end-of-year holidays, when attacks increase.
Trust Wallet: causes and consequences of a hack with major repercussions
Flaw exploited by crypto hackers comes from stolen Chrome Web Store API keyallowing a malicious update to be released without going through internal controls. This attack is in line with the incident “Sha1-Hulud”which had compromised the development secrets of Trust Wallet on GitHub. The consequences are multiple:
- Loss of user confidence;
- Increase in phishing attempts;
- Strengthening verification requirements for reimbursements.
Trust Wallet must now invest massively in cybersecurity to restore its reputation, especially since the economic impact is significant. Additionally, the cost of refunds and security measures could affect the company's profitability in the short term. Crypto users, for their part, are invited to scrupulously check the sources before any update.
2025, a year marked by crypto hacks
The year 2025 marked a turning point in cryptocurrency security, with billions of dollars stolen, according to Chainalysis. Among major attacks, Bybit suffered a $1.5 billion hack of mostly Ethereum in February, attributed to the North Korean group Lazarus. In November, Balancer lost $116 million via a flaw in its smart contracts.
These incidents highlight the urgency of strengthening security audits! But also to adopt solutions like hardware wallets and double authentication. Collaboration between crypto platforms is becoming crucial to limit systemic risks.
The postponement of the Trust Wallet update is a reminder that security remains a major challenge for cryptocurrencies. However, crypto hacks are increasing, and in 2025 alone, $3.4 billion was stolen. A crucial question arises: how to reconcile innovation and user protection in the ecosystem?
Maximize your Tremplin.io experience with our 'Read to Earn' program! For every article you read, earn points and access exclusive rewards. Sign up now and start earning benefits.
