A major security incident at Trust Wallet has triggered immediate alerts across the Shiba Inu ecosystem. The multi-chain self-custody platform confirmed that a specific browser extension version contained critical vulnerabilities, resulting in $7 million in user losses. Susbarium Shibarium Trustwatch, a dedicated watchdog account protecting the Shiba Inu community from scams and security threats, issued an urgent warning to all users. The alert targets users of Trust Wallet's web browser extension, specifically version 2.68. Critical Extension Vulnerability Identified Trust Wallet extension v2.68 contains a serious security flaw that puts user funds at risk. The vulnerability affects only this specific version of the Chrome browser extension. Users must disable the compromised version immediately and install the updated v2.69 release from the official Chrome Web Store. Mobile app users are not at risk from this breach. Other browser extensions remain secure and functional. The problem exists solely within the v2.68 web extension for Chrome users. Susbarium emphasized the urgency of this update in its community alert. The organization has established itself as a reliable source for security information within the Shiba Inu space. Earlier in December, Susbarium warned community members about fraudulent actors impersonating moderators and technical leads. These scammers operated on Discord and Telegram, sending fake notifications about wallet bugs to lure victims toward malicious websites. Financial Impact and Compensation Plans Binance co-founder Changpeng Zhao publicly confirmed the extent of the damage. The breach resulted in exactly $7 million in losses across affected accounts. Trust Wallet corroborated this figure through its official channels. The wallet provider announced plans to reimburse all victims of the security incident. Trust Wallet stated it is working through the final stages of the refund process. Affected users will receive direct communication regarding progress and updates throughout the compensation timeline. The company stressed that legitimate correspondence will only come through verified official channels. No representatives will contact users through unsolicited messages or third-party platforms.
