Trust Wallet Chrome Extension Hack: Supply Chain Attack Leads to $8.5M Crypto Theft

On December 3, 2025, Trust Wallet disclosed a supply chain attack, dubbed "Shai-Hulud" (or "Sha1-Hulud"), that occurred in November 2025. This attack compromised the Chrome extension of Trust Wallet, resulting in the theft of approximately 8.5 million dollars in cryptocurrency assets. The attacker exploited exposed GitHub secrets from the development team, gaining unauthorized access to the extension's source code. This incident marks the second occurrence of this malicious campaign. Supply chain attacks, such as this one, target third-party components or services to compromise the primary system. The exposure of GitHub secrets, which may include sensitive information like API keys or credentials, allowed the attacker to infiltrate the development environment. The financial impact of this breach is significant, highlighting the critical importance of securing development environments and managing secrets effectively. Cybersecurity professionals should take note of this incident and ensure that best practices for secret management are implemented. This includes using secret management tools, regularly rotating secrets, and limiting access to sensitive information. While the exact infection vectors and mechanisms of the theft have not been disclosed, the incident underscores the ongoing threat posed by supply chain attacks in the cryptocurrency space.