A Chinese hacker group operating under the fake security firm name Wuhan Anshun Technology stole approximately $7 million in cryptocurrency. The group executed supply-chain attacks targeting users of Trust Wallet and other platforms.
They deployed malicious browser extensions and compromised Electron-based applications embedded with remote access tools. These tools harvested wallet credentials and authorized fund transfers across Ethereum, BNB Chain, and Arbitrum.
The operation unraveled after an internal dispute over unpaid profits prompted a whistleblower to leak evidence and announce intentions to surrender. U.S. authorities have not yet confirmed charges or released investigative details.
Security experts warn that third-party wallet software updates-and especially unvetted extensions-pose critical, escalating risks to digital asset holders.