๐จ BREAKING: A critical vulnerability in Cardano wallet SecondFi exposed private keys, allowing attackers to drain funds from 374 addresses โ roughly 16 million ADA ($2.4M) affected.
SecondFi (which rebranded from Yoroi in April 2026) confirmed the root cause was an address-level flaw in its wallet generation software. The company triggered emergency measures and secured 129 million ADA, now held by an independent third-party custodian for affected users.
Immunefi CEO Mitchell Amador noted the blockchain itself remained secure, but warned that attackers are increasingly targeting key generation infrastructure โ the "part nobody audits like a contract."
Cardano founder Charles Hoskinson clarified SecondFi is NOT an IOG product and has no business relationship with Input Output Global.
SecondFi is advising users NOT to restore recovery phrases into new wallets, as the risk persists. This incident highlights a growing attack vector beyond smart contract audits.
$ADA $BTC $ETH
#Bitcoin #Crypto #DeFi #Blockchain #BitcoinNews
SecondFi (which rebranded from Yoroi in April 2026) confirmed the root cause was an address-level flaw in its wallet generation software. The company triggered emergency measures and secured 129 million ADA, now held by an independent third-party custodian for affected users.
Immunefi CEO Mitchell Amador noted the blockchain itself remained secure, but warned that attackers are increasingly targeting key generation infrastructure โ the "part nobody audits like a contract."
Cardano founder Charles Hoskinson clarified SecondFi is NOT an IOG product and has no business relationship with Input Output Global.
SecondFi is advising users NOT to restore recovery phrases into new wallets, as the risk persists. This incident highlights a growing attack vector beyond smart contract audits.
$ADA $BTC $ETH
#Bitcoin #Crypto #DeFi #Blockchain #BitcoinNews