Ill Bloom Wallet Generation Vulnerability Still Puts Thousands of Accounts at Risk, Approximately $5 Million Stolen or Transferred Recently
Odaily reported that Coinspect Security has disclosed a wallet generation vulnerability named "Ill Bloom" that is being exploited by attackers, allowing them to take control of affected wallets and steal funds. This vulnerability has impacted wallets on multiple blockchains since 2018, with affected wallets still being generated as of a few weeks ago, and not originating from a single software wallet.
On May 27, hundreds of accounts were drained of approximately $3 million, and in the past few hours, another $2 million has been transferred out of exposed wallets. Currently, thousands of accounts remain at risk, spanning Bitcoin, Ethereum and its L2s, Tron, and Solana. Coinspect Security has launched a tool to check affected addresses and urges wallet providers to integrate lightweight weak mnemonic detection functionality.
