SlowMist: A Solana phishing attack stole $3 million by tampering with the owner permissions of victims' wallets.

SlowMist disclosed on its official WeChat account that it recently received a request for help from a user who claimed to have been the victim of a phishing attack. The user discovered abnormal authorization records in their Solana wallet, attempted to revoke the authorization but was unable to do so, and provided the affected wallet address. On-chain analysis revealed that the user's Owner privileges had been transferred to an address starting with "GKJBEL". Furthermore, the user had already lost assets worth over $3 million USD, and another $2 million USD worth of assets were held in DeFi protocols and could not be transferred (this $2 million USD worth of assets has now been successfully recovered with the assistance of the relevant DeFi platforms).