The incident, which occurred on December 25, was a result of a supply-chain attack that injected harmful code into the extension’s JavaScript files, masquerading as normal analytics functionality.
Users who installed the affected version (2.68) and imported their seed phrases inadvertently granted attackers access to their wallets. Upon importing their recovery phrases, the code was triggered, transferring sensitive wallet information to an attacker-controlled domain.
The exploit operated silently in the background, without any visible warnings to users. The crypto wallet platform confirmed that the vulnerability was confined to the Chrome browser extension and did not affect its mobile applications or the underlying blockchains themselves.
Trust Wallet has since rolled out a patched version (2.69) and advised users to disable the problematic version and upgrade immediately. In a post on X on Friday, Trust Wallet stated, “We’ve identified a security incident affecting Trust Wallet Browser Extension version 2.68 only. Users with Browser Extension 2.68 should disable and upgrade to 2.69.”
Update on the Trust Wallet Browser Extension (v2.68) incident:
We’ve verified that around $7M has been impacted and we will ensure all affected users are refunded.Our top priority is supporting those affected, and we are actively finalizing the process to refund the… https://t.co/2XRx8GvZ75
— Trust Wallet (@TrustWallet) December 26, 2025
In a follow-up post, Trust Wallet noted, “We’ve confirmed that approximately $7M has been impacted and we will ensure all affected users are refunded. Supporting affected users is our top priority, and we are actively finalizing the process to refund the impacted users. We appreciate your patience and will provide instructions on next steps soon.”
Meanwhile, Binance founder Changpeng Zhao (CZ) assured that affected users would receive full reimbursements. He emphasized that the team continues to investigate how hackers managed to acquire the updated version.
“So far, $7 million has been affected by this hack. Trust Wallet will cover. User funds are SAFU. We appreciate your understanding regarding any inconveniences caused. The team is still investigating how hackers were able to submit a new version.”
So far, $7m affected by this hack. @TrustWallet will cover. User funds are SAFU. Thank you for your understanding regarding any inconvenience caused. ????
The team is still investigating how hackers were able to submit a new version. https://t.co/xdPGwwDU8b— CZ ???? BNB (@cz_binance) December 26, 2025
If you are a user affected by Browser Extension v2.68, follow these steps provided by Trust Wallet:
Step 1: To secure your wallet and prevent further issues, do not open the Trust Wallet Browser Extension v2.68 on your desktop device.
Step 2: Navigate to the Chrome Extensions panel in your Chrome browser by entering the following into the address bar (shortcut to the Official Trust Wallet Browser Extension): chrome://extensions/?id=egjidjbpglichdcondbcbdnbeeppgdph.
Step 3: If the toggle below Trust Wallet is still ‘On,’ switch it ‘Off.’
Step 4: Click ‘Developer mode’ in the upper right corner.
Step 5: Press the ‘Update’ button in the upper left corner.
Step 6: Verify the version number: 2.69. This is the latest, most secure version.
