TechFlow news, according to SlowMist Zone intelligence, due to the weak entropy issue in versions prior to Mina JavaScript client-sdk v1.0.1, multiple community members have reported stolen wallet private keys. After investigation, the SlowMist security team found that wallets created using Clorio Wallet v0.1.1 and Clorio Wallet v0.1.0 are at risk of being compromised.
Users who created wallets using Clorio Wallet v0.1.1 and Clorio Wallet v0.1.0 (released on May 28, 2021) are advised to upgrade their wallet to the latest version (Clorio Wallet v1.0.0), create a new wallet address, and transfer funds to the newly created address to ensure asset security. Vulnerable wallet versions are Clorio Wallet < v0.1.2, and vulnerable client-sdk versions are o1labs/client-sdk < 1.0.1. Source link




