Coinspect has disclosed the Ill Bloom vulnerability, a crypto wallet flaw that created weak recovery phrases on multiple blockchains. Attackers exploited the weakness on May 27, draining 431 wallets for about $3.1 million.
Coinspect traced the flaw to an insecure pseudorandom number generator used during wallet creation. The weakness spans multiple chains, including Bitcoin (BTC), Ethereum (ETH), and Solana (SOL).
How the Ill Bloom Vulnerability Breaks Crypto Wallets
According to Coinspect, the faulty generator produced recovery phrases with far less cryptographic strength than intended. As a result, attackers can regenerate the whole range of possible phrases and sweep any funded address.
The researchers reproduced the attack end-to-end. They derived every address the weak phrases could produce and matched them against funded wallets on public blockchains. Affected addresses date back to 2018, and most trace to lesser-known mobile crypto wallets.
Users are asked to review their historical wallet addresses. Hardware wallet users remain unaffected. Earlier this year, Binance issued a critical iOS alert for mobile users.
Coordinated May 27 Sweep Drained 431 Wallets
According to Coinspect’s analysis, the monitored set contains 2,114 funded addresses across Bitcoin, Ethereum, Tron, Rootstock, and Polygon. On May 27, drained accounts sent their balances to a handful of shared collector addresses within hours.
Bitcoin absorbed the biggest hit at $2.57 million, and one account alone lost over $1.1 million. Historically, the exposed set held up to $12.56 million at its April 2022 peak.
The firm calls the $3.1 million figure a lower bound because new affected accounts keep surfacing. The sweep also adds to heavy crypto theft losses this year, which topped $400 million in January alone.
Compromised keys drain value fast, as the recent private key breach at Humanity Protocol showed. Notably, earlier incidents such as Milk Sad stemmed from the same class of weak randomness.
How Crypto Users Can Protect Their Funds
Coinspect published a checker that compares public addresses against the known vulnerable dataset. However, a negative result does not guarantee safety because the dataset remains incomplete.
Matched users should create a brand-new crypto wallet and migrate funds to its addresses. In contrast, importing the old phrase into another app leaves the money exposed.
Meanwhile, scammers exploit scares like this one, as a recent fake airdrop drain on Hyperliquid showed. Coinspect stressed it will never request secrets.
“We will never ask for seed phrases, private keys, signatures, or approvals, or ask users to send funds to ‘recover’ or protect a wallet”
Wallet vendors keep pushing safer defaults, including Ethereum’s new Clear Signing standard. Still, the coming days should reveal which apps generated the weak phrases. Until then, moving crypto off flagged addresses remains the only reliable fix.









