Largest Solana drainer community has over 6K members: Chainalysis

One of the largest online communities devoted to just one popular Solana ( SOL ) wallet drainer kit has more than 6,000 members, according to blockchain security firm Chainalysis.

Over the last week, several blockchain security firms shared concerns about a growing number of malicious Solana DApps — which have targeted users with Solana-based drainers.

/3 As Solana continues to gain popularity, drainer groups are increasingly moving towards it, as indicated by the growing number of malicious Solana dApps detected by Blockaid.

— Blockaid (@blockaid_) January 2, 2024

Chainalysis Senior Intelligence Analyst Brian Carter told Cointelegraph that the most successful draining kits are flexible and can drain a variety of assets using different methods.

He added that there were Russian links to the small community of developers offering drainer kits for sale since the documentation is often in Russian.

“The largest community devoted to one Solana drainer has about 6,200 members,” he said before adding:

“There is really one successful dedicated Solana drainer kit that is promoted in multiple channels that links to the same developer. Most of the drainer kits used in crimes today are not specific or limited to Solana.”

To mitigate the threat, he suggested using tools such as Wallet Guard, which recently implemented protections for Solana drainers. He added that phishing with malicious links was a common attack vector.

SOLANA WALLET DRAINER

We have detected a new Solana wallet drainer kit being actively distributed. This is targeted at popular meme coins such as Bonk, Jupiter, Chonky, Galactic Geckos dogwifhat.

Our browser extension is now proactively blocking these websites. pic.twitter.com/59VVuUa2eI

— Wallet Guard (@wallet_guard) December 29, 2023

“Many drainers exploit people’s Fear Of Missing Out and spam users in DeFi communities with links to legitimate-looking but fraudulent websites. Social Media accounts and Discord communities are often compromised and used to promote links to drainer websites," he added.

According to blockchain security firm Certik, many cybercriminals began to offer Solana drainer kits to scammers in December.

The kits are peddled on private hacker chat groups and the dark web and can be bought for as little as $250 per month, according to screenshots shared by CertiK.

Crypto drainer kits are crafted to facilitate cyber theft by draining funds from digital wallets. They primarily operate through phishing scams, luring victims to enter their wallet details on counterfeit websites.

Certik analyst Joe Green told Cointelegraph that it is currently unclear how much has been stolen across all Solana drainers. However, in some examples, “they take a similar approach to the EVM drainers that we see where the provider takes a cut of the stolen assets.”

#CertiKSkynetAlert

In December we saw many cybercriminals begin to offer Solana Drainers to scammers.

Below are some of the providers we have found that recently began offering SOL Drainer services

Beware of a likely increase in phishing attempts targeting SOL holders pic.twitter.com/VP0iXMRZVZ

— CertiK Alert (@CertiKAlert) January 2, 2024

“Phishing on the Solana network isn't new,” he noted before adding, “but with the resurgence of Solana's price cybercriminals are beginning to focus on targeting individuals in the ecosystem.”

SOL prices have surged more than 400% over the past three months.

Related: Hacking group Pink Drainer strikes again, pilfering $4.4M from just 1 victim

On Jan. 2, Web3 security firm Blockaid reported that one particular Solana drainer managed to steal hundreds of thousands of dollars worth of SOL and SPL tokens.

“These drainers are highly sophisticated and can deceive the simulations used by Solana wallets, leading users to unknowingly sign malicious transactions,” it reported.

Magazine: DeFi’s billion-dollar secret: The insiders responsible for hacks