The team behind Solareum, a Telegram trading app for buying and selling SolanaToken, based on the popular messaging platform, has announced that it will be shut down after some exploits were linked. $523,000 worth of SOL was poured Last week from user bags.
A wallet extraction exploit that is believed to have affected more than 300 Solana users occurred late last week. Initially, some users believed that the popular Telegram trading platform Bonkebot was responsible for leaking users' private keys.
But the team behind the BONK meme coin denied that their Telegram site had a security flaw, saying there were any BONKbot users affected by the exploit. They used to export their private keys. For use in other applications.
Solarium then He responded on his Twitter page “There [may be] An opportunity we took advantage of.”
“It is with great regret that we announce the closure of the Solarium project,” the group wrote in a telegram on Saturday. Unfortunately, due to insufficient funds, market trends and the recent security breach of our systems, we are forced to make this difficult decision.
“Over the past months, we have made a concerted effort to secure additional funding, adapt to market changes and strengthen security measures,” he added. “Despite these efforts, the recent security breach has compromised the integrity of our systems, and due to a lack of funding, we are unable to ensure the safety of our users.”
The Solarem team said they would contact authorities to freeze stolen crypto assets if they were sent to central exchanges. However, the group has not said anything about compensating the affected users. Decrypt He had reached out to Solareum several times for comment, but had yet to receive a response.
The project's Telegram channel is full of users asking for answers about the exploit, threatening legal action if Solareum doesn't announce its plans to compensate them.
BONKbot is arguably the largest Telegram bot on Solana with over 270,000 users requesting it, and was initially a prime suspect for most of the community. The BONKbot team quickly disavowed the connection and shared the information with victims of the apparent pickpocketing exploit.
The team said on Twitter that the exploit appeared to be tied to a “special app” that some users exported their private keys to, but did not specify which app was at the root of the problem. On Monday, BONKbot confirmed Decrypt The data actually suggested Solareum.
“We've been working with the security community to triangulate the exploit, and while victims connect to different apps and wallets, the absolute point of contact so far is importing victims. [private keys] To the Solareum,” said the BONKbot team.
“Our analysis strongly indicated this prior to Solarium's announcement, but without access to their codebase or logs, our analysis is always indicative, not conclusive,” he said. “Furthermore, it is still unclear whether it is an external breach or an internal leak. So we have refrained from publicly pointing fingers—that is not our business,” he said.
Edited by Ryan Ozawa.
Stay on top of crypto news, get daily updates in your inbox.