A coordinated exploit hit a platform that was designed to help meme coins on the Solana blockchain get more exposure, DogWifTools, and many of its users lost a lot of money. The attack utilized exploits on versions 1.6.3 through 1.6.6 of the software, with estimates of over $10 million worth of cryptocurrency stolen.
The DogWifTools team said the attackers accessed their private GitHub repository by reverse-engineering the software and obtaining a GitHub token. This enabled the hackers to insert malicious code into legitimate software updates and distribute them to users.
The dropped updates were malware pretending to be a Remote Access Trojan (RAT) that downloaded a file called “updater.exe” into the AppData folder. The Malicious file targeted users’ cryptocurrency wallets and stole customers’ private keys. Luckily, macOS users were safe.
Once it was installed, the malware drained funds from both hot and cold wallets in short order. Others complained of losing access to accounts on top crypto exchanges including Binance and Coinbase. The hackers are believed to have exploited the software’s broad permissions to gain access to sensitive information such as ID photos that could enable them to hijack accounts.
The controversy has left the crypto community fuming and debating its causes. Some users accused DogWifTools of staging a “rug pull” — a scam in which developers leave a project after making a profit. No evidence has emerged supporting those allegations, however.
Others said the prolific features of DogWifTools, namely volume automation, token bundling, and comment bots, could be exploited by scammers. In a follow-up that day, blockchain investigator ZachXBT highlighted that the bundler tool contains large quantities of tokens that were launched, as well as volume bots that produce fake activity that in turn is designed to create artificial interest.
Also Read: Breaking Bad Actor Dean Norris Claims X Account Hacked to Promote Scam Memecoin
