Update: Solflare “xpass exploit" Details Released

In Feb 2025, I reported an exploit vulnerability in the Solflare Chrome wallet which allowed the wallet vault (solflaredata) to be decrypted without the user's password.

Turns out, this was a backdoor, not a bug.

Today, I am releasing the full details of the xpass exploit, aka the "backdoor master key".

https://forum.hashpwn.net/post/11116

#solflare #crypto #wallet #vulnerability #exploit #backdoor #xpass #cyclone #hashpwn #news #infosec #cybersecurity

New GitHub Release:
Solflare Wallet Extractor and Decryptor binaries have been posted on GitHub. #solflare_pwn

https://forum.hashpwn.net/post/434

#solflare #crypto #hashpwn #cyclone #hashcracking

During a recent audit of the Solflare Crypto Wallet browser extension, I came across a major vulnerability that allows the encrypted seed phrase and private keys to be instantly recovered -- without requiring the wallet password to decrypt them.

https://forum.hashpwn.net/post/416

#hashcracking #crypto #solflare #hashpwn #cyclone

Solflare Wallet has been reverse engineered -- wallets can be extracted and their seed phrase recovered.

https://forum.hashpwn.net/post/404

#solflare #crypto #wallet #hashpwn #cyclone #hashcracking #recover #reverseengineering

Solana’s Serum DEX: A Paradigm Shift In Decentralized Exchange

https://stevehodgkiss.net/solanas-serum-dex-a-paradigm-shift-in-decentralized-exchange/

Imagine a world where you can trade, buy, and sell assets seamlessly and securely, without relying on traditional centralized exchanges. Enter Solana’s Serum DEX, a groundbreaking platform that is revolutionizing the way we conduct decentralized exchanges. Built on the Solana blockchain, Serum DEX offers lightning-fast transactions, low fees, and an unmatched level of transparency.

#SolFlare