Solana-based wallet provider Phantom said its systems were not compromised in the exploit where hackers drained around $4 million from over 9,000 wallets.
Phantom tweeted on Tuesday that after a nearly week-long investigation, its team found no vulnerabilities that could explain the exploit. The wallet provider added that it has been independently audited by Halborn Security and OtterSec. The auditing firms have, so far, not found any issues that could explain the incident.
"While some Phantom users were affected, in each case we have reviewed, we found that they had imported their seed phrases/private keys to or from a non-Phantom wallet," Phantom added.
The attack, which started on Aug. 3, affected numerous hot wallet (wallets which stay connected to the internet at all times) providers, such as Slope and TrustWallet, as well as Phantom.
At the time, the Solana network's engineers said that Slope wallets had been compromised, which Slope confirmed but did not say whether the private key storage practices were involved. Phantom added that it had reason to believe "complications related to importing accounts to and from Slope" was the starting point of the attack.
The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is an award-winning media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. In November 2023, CoinDesk was acquired by Bullish group, owner of Bullish, a regulated, institutional digital assets exchange. Bullish group is majority owned by Block.one; both groups have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary, and an editorial committee, chaired by a former editor-in-chief of The Wall Street Journal, is being formed to support journalistic integrity.