ExchangeDEX+
Buy CryptoMarketsSpotFuturesGOLDEarnEvent Center
More
Commodity Zero-Fee Gala

Airdrop

An Airdrop is a distribution of free tokens to a community, typically used as a marketing tool or a reward for early protocol adopters and testers. In 2026, the "points-to-airdrop" model has matured into merit-based incentive programs that utilize Sybil-resistance and Proof-of-Humanity to filter out bots. Airdrops remain a primary method for decentralized governance (DAO) bootstrapping. Follow this tag for the latest on retroactive rewards, eligibility criteria, and how to participate in the most anticipated token distributions in the ecosystem.

5454 Articles
Created: 2026/02/02 18:52
Updated: 2026/02/02 18:52
Beware of Solana phishing attacks: Wallet Owner permissions may be compromised.

Beware of Solana phishing attacks: Wallet Owner permissions may be compromised.

background Recently, we received a request for help from a user who was attacked by a phishing attack. The user discovered abnormal authorization records in their wallet, attempted to revoke the authorization but was unable to do so, and provided the affected wallet address: 9w2e3kpt5XUQXLdGb51nRWZoh4JFs6FL7TdEYsvKq6Wb. Our on-chain analysis revealed that the user's account owner privileges had been transferred to the address GKJBELftW5Rjg24wP88NRaKGsEBtrPLgMiv3DhbJwbzQ. Furthermore, the user had over $3 million worth of assets stolen, and approximately $2 million worth of assets were held in a DeFi protocol but could not be transferred (this $2 million worth of assets has now been successfully recovered with the assistance of the relevant DeFi provider). (https://solscan.io/tx/524t8LW1PFWd4DLYDgvtKxCX6HmxLFy2Ho9YSGzuo9mX4iiGDhtBTejx7z7bK4C9RocL8hfeuKF1QaYMnK3itMVJ) The victim attempted to transfer funds from the account to their own address to verify authorization, but all transactions failed. This situation is highly similar to the "malicious multi-signature" attacks that frequently occur in the TRON ecosystem. In other words, this attack is not a traditional "authorization theft," but rather the core permissions (Owner permissions) being replaced by the attacker, rendering the victim powerless to transfer funds, revoke authorization, or manipulate DeFi assets. The funds are "visible," but no longer under their control. Solana Owner Modification Mechanism Attackers successfully tricked users into clicking using two counterintuitive scenarios: 1. Normally, when signing a transaction, the wallet simulates the execution result of the transaction. If there is a change in funds, it will be displayed on the interactive interface. However, a carefully crafted transaction by an attacker will not show any change in funds. 2. Traditional Ethereum EOA accounts are owned by private keys, and users are unaware that Solana has the capability to modify account ownership. Let's analyze what exactly the Solana Owner modification is. Account ownership When creating an account in a wallet, the Owner is typically the system account (11111111111111111111111111111111). During transactions, the system verifies that the transaction signature was signed with the corresponding public key. You can view basic account information using the Solana Account command. Another type of account is called a PDA account, which is derived from a smart contract and is mainly used to store smart contract data. Its owner is the smart contract from which it is derived. For example, an account used to store token issuance and holding information is a PDA account. When viewing the basic information of an account using Solana Account, you can see that its owner is the token smart contract TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA. Both types of accounts can change the Owner, but they have different rules and restrictions: Regular account The Owner cannot be directly modified externally via commands or scripts, but it can be modified through smart contract calls. The key instructions are as follows: The assign command changes the account's Owner from its current value to new_owner. After deployment, this command is invoked using the Solana CLI or a client (such as Solana Web3.js). This phishing attack exploited this feature to trick victims into signing transactions containing the assign command, thus silently transferring the Owner from the victim's wallet address. PDA account In short, the PDA account can modify the Owner, but the account's data must be empty. This is done using the assign command. We conducted simple tests on the feedback from modifying the Owner in several scenarios: 1. Newly created PDA accounts can specify any Owner. If the Owner is not the Program that created it, then the Program has no write permissions. 2. When attempting to modify the Owner of a newly created PDA account, the following error occurs: "instruction illegally modified the program id of an account". 3. Before the PDA account is finally assigned data, an attempt is made to write data: instruction modified data of an account it does not own. Once the owner of an account is changed, the user loses control of the account, and attackers can transfer account assets through CPI calls. Another common type of ownership change is the ownership of a token account. Essentially, this is ownership controlled by the logic within a smart contract, not by the underlying logic of Solana. However, it is also frequently used in phishing attacks, and users should be wary of this type of phishing attack. MistTrack Analysis According to the analysis of the victim's address 9w2e3kpt5XUQXLdGb51nRWZoh4JFs6FL7TdEYsvKq6Wb by the on-chain tracing and anti-money laundering tool MistTrack, the fund transfer path in this attack was complex. The attackers mainly diverted assets through two core addresses: BaBcXDg… (flow to 1) and 7pSj1R… (flow to 2). Flow direction 1: BaBcXDgbPgn85XtEQK7TZV8kZuFpT4iWVAs4QJoyNSmd The first main path involved assets worth approximately $2.38 million, characterized by "multi-level diffusion + decentralized deposits through CEXs + multiple address intermediaries." The attackers used this address to exchange various tokens (including PAYAI, CASH, CARD'S, JitoSOL, POLYFACTS, PUMP, PYUSD, and CAP) for SOL. Specifically, PUMP was transferred to 7E4eNkK… before being exchanged for SOL. The main destinations of the exchanged SOL are as follows: 1) 717.5 SOL was transferred to YDrMfsB…, some SOL was transferred to the Binance platform, and the remaining funds were dispersed and remained in about 4 transit addresses. 2) 7,556.89 SOL + 2,218 SOL (from PUMP exchange) were uniformly aggregated to 7E4eNkK…, then some SOL were transferred to the Letsexchange platform, 5,050.93 SOL were transferred to FyB2jDJbTdmW…, and the remaining funds were dispersed and remained in about 13 transit addresses. 3) 2,161.88 SOL + the aforementioned 5,050.93 SOL were further dispersed in FyB2jD… and transferred to multiple platforms (HTX, Binance, Kucoin, ChangeNOW, Changelly), with some flowing into an unknown address (25nULbv…). The remaining funds were dispersed and remained in approximately 25 transit addresses. 4) 2,053 SOL were transferred to 6qdtH5D…, some SOL were transferred to the Letsexchange platform, and the remaining funds were dispersed and remained in about 15 transit addresses. 5) 20 SOL is transferred to 5rJdvkp…, then transferred and remains at address 2etvjZH…. 6) 2,142 SOL were transferred to 2xFzAda…, 352 SOL were transferred to the Binance platform, 200 SOL were transferred to the Letsexchange platform, and the remaining funds were dispersed and remained in approximately 11 transit addresses. Flow direction 2: 7pSj1RxHf77G3XeisvnNAtbyx5AFjYPcChswWhZe9bM8 The second main path involves assets worth approximately $790,000, with the core characteristic being "cross-chain and multi-chain circular exchange." The attackers also exchanged various received tokens for SOL, with JitoSOL, PUMP, and POLYFACTS accounting for a relatively high proportion. The main destinations of the exchanged SOL are as follows: 5,742 SOL were transferred to FiywJZ2Z…, which also received 2,772.8 SOL from another phishing event address marked “Phishing” by MistTrack. The attackers used Relay.link to exchange 8,579.92 SOL for ETH and cross-chain to the Arbitrum address 0xDCFa6f…, then used 1inch to exchange the funds for SOL and cross-chain to multiple Solana addresses. They then used 1inch repeatedly for cross-chain operations, which will not be elaborated on here. FiywJZ2Z… transferred the remaining 215.89 SOL to Ah5Rs916…, which was then exchanged for 29,875 USDC. The USDC was then exchanged for DAI via Relay.link in increments of 5000, 5000, 5000, 5000, and 19,875.38, and transferred across chains to Base and Ethereum address 0xd2c1c2A…. Two of the 5000 USDC transactions were returned, and the DAI has not yet been transferred out. DeFi Asset Rescue Furthermore, with the assistance of multiple parties, the victim's remaining assets in DeFi were successfully withdrawn and transferred through the address fgR5PJF…, including approximately 2.17 million PYUSD and 4,548 USDC. This money flow clearly reveals the attacker's behavioral pattern: rapid dispersion, multiple address jumps, multi-platform mixing, cross-chain circulation, and simultaneous CEX deposits and DeFi asset reuse, constructing a multi-level, cross-ecosystem money laundering network that greatly increases the difficulty of tracking. MistTrack has already marked all related addresses. How can we prevent similar attacks? For ordinary users, this type of attack is essentially a "phishing attack." Attackers will disguise links in various ways, such as airdrops, rewards, tasks, early test qualifications, or even pretend to be official announcements, making people think it's just a simple operation. In reality, the pop-up signature hides high-risk permissions such as modifying the owner. Once signed, the wallet is basically taken over. Therefore, the most important prevention method is to think carefully before clicking on links and "signatures": Is the source trustworthy? Is this page official? What does this signature actually do? If the content that pops up in the wallet is completely incomprehensible, or if it suddenly contains strange permissions, unfamiliar addresses, or inexplicable requests for authorization, then you must stop immediately and never force yourself to click confirm. Avoid using wallets containing large amounts of assets for everyday interactions. For tasks, projects, and airdrops, prepare a separate account with a low balance specifically for interaction. Keep your truly important assets in a separate wallet or even a cold wallet. This way, even if you accidentally sign in, you can minimize losses. Additionally, avoid granting unlimited permissions; limit the scope and amount of permissions whenever possible to reduce the space for attackers to abuse the service. In short, take an extra look, double-check, avoid clicking or signing randomly, and create layers of protection for yourself; store large assets separately, using a secondary account for interaction and the primary account only for safekeeping; stop immediately if you encounter any anomalies, and don't take chances. By doing these things, the risk of being attacked by this type of phishing attack can be significantly reduced. Finally, I highly recommend reading "The Blockchain Dark Forest Self-Help Handbook" (https://darkhandbook.io/).

Author: PANews

2025/12/04

Solana Prepares Major Mobile Token Launch for 2026

Solana Prepares Major Mobile Token Launch for 2026

The post Solana Prepares Major Mobile Token Launch for 2026 appeared on BitcoinEthereumNews.com. Altcoins Solana’s push into mobile is about to enter a new phase. After months of speculation, Solana Mobile confirmed that January 2026 is the target window for releasing SKR, the token designed to tie together the project’s growing hardware and software ecosystem. Key Takeaways SKR will launch in January 2026 as the central token for Solana’s mobile ecosystem. 30% of the 10 billion-token supply is dedicated to airdrops and unlocks for active users. The Solana Seeker smartphone has surpassed 150,000 pre-orders with global shipments underway.  Rather than positioning SKR as another general-purpose asset, Solana Mobile is framing it as the engine behind its entire mobile environment.The token will take on several roles: coordinating incentives, handling ownership layers for apps, and forming the backbone of economic activity inside the mobile ecosystem. Developers have emphasized that SKR isn’t meant to sit on the sidelines – it’s meant to be used by everyday Seeker owners and dApp builders. To make that possible, the company plans a direct distribution model. Instead of complicated launches or external fundraising rounds, SKR will flow straight to the community. A significant portion of the initial supply – 30% of 10 billion total tokens – is earmarked for airdrops and unlocks aimed at groups already active in the Solana Mobile universe. It only takes 10 years to build an ecosystem. https://t.co/3DPwWk1m6h — toly 🇺🇸 (@aeyakovenko) December 3, 2025 A Long Road to a Mobile Ecosystem The announcement also prompted a lighthearted comment from Solana Labs co-founder Anatoly Yakovenko, who reposted the news and joked that “it only takes 10 years to build an ecosystem.”His remark highlights how unusual Solana’s mobile journey has been. What started as an experiment with web3-native hardware has now grown into a global product line with a committed user base. The growing community around the…

Author: BitcoinEthereumNews

2025/12/04

Solana Prepares SKR Token Launch With the Seeker Phone in 2026

Solana Prepares SKR Token Launch With the Seeker Phone in 2026

Solana Mobile will launch the SKR token alongside the Seeker smartphone in early 2026. SKR will power governance, incentives, and the broader Seeker mobile Web3 ecosystem. Solana Mobile is lining up the SKR token to launch alongside the Seeker phone in early 2026, making it a central part of how the device is meant to [...]]]>

Author: Crypto News Flash

2025/12/04

Launch Date of the Highly Anticipated New Altcoin Linked to Solana Has Been Announced

Launch Date of the Highly Anticipated New Altcoin Linked to Solana Has Been Announced

The post Launch Date of the Highly Anticipated New Altcoin Linked to Solana Has Been Announced appeared on BitcoinEthereumNews.com. Solana Mobile, the mobile ecosystem arm of Solana Labs, has announced that its native token, SKR, will launch in January 2026. Thus, Solana’s long-planned token launch for its mobile hardware and application ecosystem has become official. Solana Labs co-founder Anatoly Yakovenko, quoting Solana Mobile’s announcement in his post on the X account, said, “It only takes 10 years to build an ecosystem.” The new token is described as a native asset that will power the control, economics, incentives, and ownership components of the Solana Mobile ecosystem. The developers previously stated that SKR will be distributed directly to users and app developers within the ecosystem. According to SKR’s tokenization structure, which will have a total supply of 10 billion tokens, 30% of the tokens at launch are reserved for airdrops and unlocks. Solana Mobile’s X account explained that the airdrop is intended for “Seeker users, active dApp users, and similar groups.” Solana Mobile announced in August that it had received “150,000 pre-orders” for its next-generation smartphone, the Solana Seeker, with “tens of thousands” of devices already shipped to more than 50 countries. The Seeker comes with features like a hardware security solution called Seed Vault, a built-in Solana dApp Store, and an onchain Genesis token that offers early access to new apps and SKR rewards. *This is not investment advice. Follow our Telegram and Twitter account now for exclusive news, analytics and on-chain data! Source: https://en.bitcoinsistemi.com/launch-date-of-the-highly-anticipated-new-altcoin-linked-to-solana-has-been-announced/

Author: BitcoinEthereumNews

2025/12/04

Cardano: Top Midnight Wallet Holds 7.3B NIGHT Tokens, 31% of Supply

Cardano: Top Midnight Wallet Holds 7.3B NIGHT Tokens, 31% of Supply

Ahead of the imminent Midnight airdrop redemption event on Cardano, on-chain data shows the current distribution of the NIGHT token across wallets. The widely awaited Glacier Drop redemption is a few days away, and the Cardano ecosystem is preparing earnestly for it.Visit Website

Author: Coinstats

2025/12/04

Ledger Says Smartphones Aren’t Safe for Private Keys After Chip Test

Ledger Says Smartphones Aren’t Safe for Private Keys After Chip Test

A critical hardware flaw has been discovered in a smartphone chip, potentially exposing crypto holders to complete device takeover and private key theft

Author: CryptoNews

2025/12/04

Solana to Launch ‘SKR’ Mobile Token in 2026

Solana to Launch ‘SKR’ Mobile Token in 2026

Solana prepares the SKR token launch for its Seeker phone ecosystem, offering governance, incentives, and structured allocations across users. Solana plans to introduce the SKR token in early 2026 to support its Seeker smartphone ecosystem. The move is intended to increase platform governance alongside increasing user participation. Solana Mobile confirmed a rollout following months of […] The post Solana to Launch ‘SKR’ Mobile Token in 2026 appeared first on Live Bitcoin News.

Author: LiveBitcoinNews

2025/12/04

Gate CandyDrop's total airdrops reached $16 million.

Gate CandyDrop's total airdrops reached $16 million.

PANews reported on December 4th that, according to official sources, CandyDrop, an airdrop platform under the cryptocurrency exchange Gate.com, has accumulated a total prize pool of over $16 million since its launch in April this year, with a single-period prize pool reaching a maximum of $2.6 million and a peak of over 560,000 participants in a single period. Activity data shows that CandyDrop offers new users up to $1,500 in individual rewards per period, while users who participate every day can earn up to $160,000 in rewards, with total rewards for spot and futures trading exceeding $28,000. Thanks to its consistently high popularity and genuine incentives, CandyDrop has become one of the most popular airdrop programs on the Gate platform.

Author: PANews

2025/12/04

Solana Mobile Announces SKR Token Launch Tied to Seeker Phone in Early 2026

Solana Mobile Announces SKR Token Launch Tied to Seeker Phone in Early 2026

The post Solana Mobile Announces SKR Token Launch Tied to Seeker Phone in Early 2026 appeared on BitcoinEthereumNews.com. The SKR token for Solana Mobile’s Seeker phone is a governance token launching early 2026 with a 10 billion total supply, enabling owners to participate in the ecosystem through staking, airdrops, and community rewards while fostering growth in decentralized applications. SKR token allocation includes 30% for airdrops to early participants and device owners. 25% of the supply is reserved for ecosystem growth and strategic partnerships to expand the Solana Mobile platform. 10% supports liquidity provision, with an additional 10% for a community treasury, based on Solana Mobile’s official announcement. Discover how Solana Mobile’s SKR token empowers Seeker phone users with governance and rewards. Launching in 2026, it drives ecosystem growth—stake now for airdrops and community benefits. Explore the future of crypto mobiles today! What is the SKR Token in Solana Mobile? The SKR token is the native governance asset for Solana Mobile’s ecosystem, specifically tied to its Seeker smartphone, set to launch in early 2026. It provides actual ownership and participation rights to holders, including staking for rewards and influencing platform decisions. With a fixed total supply of 10 billion tokens, SKR aims to incentivize early adopters and support long-term community involvement. Source: Solana Mobile How Will the SKR Token Allocation Benefit the Solana Ecosystem? Solana Mobile has outlined a clear distribution plan for the SKR token to ensure balanced growth and community engagement. Of the 10 billion tokens, 30% is designated for airdrops, targeting Seeker phone owners and early participants to reward loyalty and encourage adoption. Another 25% is allocated for growth initiatives and partnerships, which will fund developer incentives and ecosystem expansions, such as enhancing the decentralized application store. Further, 10% goes toward liquidity provision on supported exchanges, facilitating smoother trading and accessibility for users. The community treasury receives 10%, managed collectively for projects that benefit the broader…

Author: BitcoinEthereumNews

2025/12/04

Solana Mobile to Launch SKR Token in January 2026, Powering Its Expanding Device Ecosystem

Solana Mobile to Launch SKR Token in January 2026, Powering Its Expanding Device Ecosystem

Solana Mobile will launch its native SKR token in Jan 2026. It will govern the platform with initial 10% inflation designed to incentivise early adoption. The post Solana Mobile to Launch SKR Token in January 2026, Powering Its Expanding Device Ecosystem appeared first on Crypto News Australia.

Author: Cryptonews AU

2025/12/04

Recommended by active authors

BitcoinEthereumNews
BitcoinEthereumNews
1486Articles
PANews
PANews
1241Articles
Coinstats
Coinstats
404Articles
Coindoo
Coindoo
282Articles

Related Tags

#Token-Listing#On-chain#Whale#ETF#Liquidation#Index#Perpetual-Contracts#Options#Futures

Latest Articles

Strategic Pivot To Boost Network Utility And AI Partnerships

Strategic Pivot To Boost Network Utility And AI Partnerships

2026/02/09 16:42
Tether Targeting 150 New Hires in Major Expansion Push; LiquidChain Presale Gains Momentum

Tether Targeting 150 New Hires in Major Expansion Push; LiquidChain Presale Gains Momentum

2026/02/09 16:02
WIF Price Prediction: Dogwifhat Eyes $0.30 Recovery by March Amid Technical Consolidation

WIF Price Prediction: Dogwifhat Eyes $0.30 Recovery by March Amid Technical Consolidation

2026/02/09 16:02
USDT Transfer Stuns Market: $277 Million Whale Move from Binance to Mystery Wallet

USDT Transfer Stuns Market: $277 Million Whale Move from Binance to Mystery Wallet

2026/02/09 16:00
Trading Moments: Japanese, South Korean, and A-shares surge; gold and silver rebound; Bitcoin needs to hold above 70,000 for a sustained rebound.

Trading Moments: Japanese, South Korean, and A-shares surge; gold and silver rebound; Bitcoin needs to hold above 70,000 for a sustained rebound.

2026/02/09 15:46