TLDR

  • Trust Wallet verifies that $7 million was stolen in a hack through its Chrome extension.
  • The incident had an impact on users who logged in before 11 a.m. UTC on Dec. 26, 2025.
  • A leaked Chrome Web Store API key enabled the malicious update of the extension.
  • Binance guarantees full compensation for the losses brought about by the hack.

Trust Wallet has started providing compensation to users affected by a security breach in its Chrome extension. The hack, which led to the theft of around $7 million in digital assets, affected users who had installed version 2.68 of the browser extension. Affected users can now submit claims via an official support form to get reimbursed.

The attack took advantage of a vulnerability in the Chrome extension, which was caused by a leaked Chrome Web Store API key. This allowed the malicious update to bypass internal release procedures. The compromised extension then collected users’ wallet seed phrases, resulting in the theft of assets across several blockchains, including Bitcoin, Ethereum, and Solana. 

Trust Wallet has confirmed that the hack only had an effect on users who logged into the extension before 11 a.m. UTC on December 26, 2025. Mobile app users and those using other versions of the browser extension were not impacted.

Trust Wallet Takes Immediate Action

Trust Wallet responded to the hack by releasing a fix in version 2.69 of the extension on December 25, 2025. The company quickly acknowledged the breach and confirmed its plan to compensate all affected users.

Trust Wallet that each claim would be carefully examined and processed, guaranteeing accuracy and security during the verification process. The company also warned users about potential scams, advising them to only use the official compensation form available on its website.

Changpeng Zhao, the founder of Binance, which acquired Trust Wallet in 2018, publicly assured users that the platform would cover the full losses. He reassured the community by saying, “So far, $7m affected by this hack. Trust Wallet will cover.” Zhao emphasized that user funds were “SAFU” (Secure Asset Fund for Users), showing Binance’s commitment to securing users’ assets.

How the Attack Happened

The breach started with a leaked Chrome Web Store API key, which allowed attackers to publish the malicious extension update without going through the standard internal checks. Once released, the malicious code embedded in the extension used a modified open-source analytics library to capture wallet seed phrases when users interacted with the extension. 

This data was then to the attackers, leading to the theft of funds. Blockchain security firm SlowMist identified the malicious code, confirming its role in the hack.

Blockchain security monitoring by PeckShield later showed that more than $4 million of the stolen funds had been moved through centralized exchanges, such as ChangeNOW, FixedFloat, and KuCoin. As of December 28, about $2.8 million remained in the attackers’ wallets. Trust Wallet has assured its users that it is taking all measures to recover stolen funds and prevent similar incidents in the future.

Trust Wallet Responds to User Concerns

Trust Wallet has encouraged users to report any suspicious activities related to the hack and avoid becoming victims of phishing scams. The company said that fake compensation forms and impersonation scams were circulating after the breach. Users are advised to only use the official compensation claim form provided by on its support portal.

The company continues to investigate the full extent of the incident, working with blockchain security experts to track and recover the stolen assets. Trust Wallet’s commitment to compensating affected users demonstrates its dedication to maintaining trust and security within its platform.