SlowMist warns of potential attacks that could tamper with Solana wallet owner permissions.

Odaily Planet Daily reports that the SlowMist security team issued a security alert regarding a recent phishing attack on a user. The user's Owner privileges were transferred, and attempts to revoke authorization failed. The user has already lost over $3 million worth of assets, with an additional $2 million worth of assets held in a DeFi protocol that could not be transferred (this $2 million has since been successfully recovered with the assistance of the relevant DeFi provider). This attack was not a traditional "authorization theft," but rather the attacker replaced core privileges (Owner privileges), preventing the victim from transferring funds, revoking authorizations, or operating DeFi assets. The funds appeared "normal" but were completely out of control.