MRO
761 posts
MRO รีทวีตแล้ว
As an user:
1. If a program that has any type of escrows that store private keys - that would be compromised (if they updated in the last 6h to any of these versions)
2. Any other program that doesn't store them, say, when you sign a TX for a swap - this should be fine.
Looks like they already drained, incredibly unlikely they are storing keys. Just in case, wait until all projects have updated to the safe version and don't do anything.
Removing connections in phantom or anything like that is moot. You can move funds if it makes you feel safer but unless you are running something locally with those keys - you are most likely safe
trent.sol@trentdotsol
anyone using @solana/web3.js, versions 1.95.6 and 1.95.7 are compromised with a secret stealer leaking private keys. if you or your product are using these versions, upgrade to 1.95.8 (1.95.5 is unaffected) if you run a service that can blacklist addresses, do your thing with FnvLGtucz4E1ppJHRTev6Qv4X7g8Pw6WPStHCcbAKbfx
English
most don't realize but I didn't start this handle for myself
I started it to help others win who needed a a tribe to win morally with
you don't need to PnD or have inside information jus
degn is a monster and a perfect example, it makes me insanely proud to see all his work come to fruit
more to come
English
MRO รีทวีตแล้ว
MRO รีทวีตแล้ว
