On June 22, CoinStats, a popular crypto portfolio tracking platform, announced a security breach affecting some of its iOS users who received a scam notification claiming a reward.
This notification directed users to log into the CoinStats AirScout wallet, leading them to a malicious website. CoinStats revealed that the breach specifically targeted wallets created within their app.
Users Report External Wallet Losses Despite CoinStats’ Assurances
CoinStats quickly responded to the incident by temporarily shutting down the application to isolate the breach. They reported that the attack had been mitigated and that only 1.3% of all CoinStats wallets were affected, equating to 1,590 wallets. CoinStats assured users that connected wallets and centralized exchanges (CEXes) were unaffected.
Additionally, CoinStats provided a link to the list of affected wallets so users could check if their wallets were compromised. However, the list of impacted wallets may be updated as the investigation progresses.
Read more: 9 Crypto Wallet Security Tips To Safeguard Your Assets
“If your wallet address is in this affected list, please move your funds immediately using your exported private key (if you have exported previously),” it stated.
Despite CoinStats’ assurance that only internally generated wallets were compromised, some users on Reddit and X reported that their externally connected wallets were affected. This includes wallets such as Trust Wallet and Coinbase Wallet.
“My Ethereum in Trust Wallet is gone because it is connected to CoinStats. My Trust Wallet was connected to the CoinStats app, and I woke up this morning with a notification that all my Ethereum was sent to an address, which I did not permit. I assume this is connected to what’s happening inside CoinStats right now. Does anyone have the same situation? Can this be refunded?” a Reddit user with the pseudonym Sony Erickson queried.
Read more: Top 10 Must Have Cryptocurrency Security Tips
The recent incident emphasizes the continued vulnerabilities within the crypto industry. According to a report from blockchain security company PeckShield, in May 2024, there were around 30 crypto hack incidents.
These collective incidents led to losses of $574.6 million and hackers’ profits of $385 million. The report also stated that this figure marked an increase of about 666% from April 2024.
Disclaimer
In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and Conditions, Privacy Policy, and Disclaimers have been updated.