Developers of cryptocurrency wallet MetaMask warn of critical problems

Security researchers from the Halborn platform have discovered a critical vulnerability in outdated versions of the MetaMask cryptocurrency wallet. According to the company, the security of the password encryption function was partially compromised by the browser.

The founders of MetaMask paid $ 50,000 in rewards for the researchers' work. The outdated version of MetaMask 10.11.3 had a serious vulnerability regarding the wallet owner’s passphrase.

«Halborn found out that the secret recovery phrase could be obtained under very special circumstances, and thanks to their research, we were able to implement new protections in a short time,» the developers explained.

MetaMask advised users to update their wallet versions and be careful with third-party links. On June 14, security experts from Confiant warned the crypto community about fake programs that imitate MetaMask and Coinbase Wallet to steal passphrases and intercept transactions.