Trust Wallet launches compensation process for $7 million browser extension hack victims

Trust Wallet has started a formal compensation process for users who lost approximately $7 million in digital assets due to a security incident involving its Chrome browser extension (version 2.68). Affected users must submit claims via an official support form, providing necessary details like wallet addresses and transaction hashes. Changpeng Zhao, founder of Binance (which acquired Trust Wallet), confirmed that the company will cover all affected losses, stating user funds "are SAFU." The hack occurred after a leaked Chrome Web Store API key was used to publish the compromised extension on December 24th, bypassing standard internal release procedures. The malicious code harvested wallet seed phrases. The incident only affected users who logged into the extension before 11 a.m. UTC on December 26th; mobile app users and those on other extension versions were unaffected. Trust Wallet released a fix in version 2.69 on December 25th.

(Source：The Block)