Share this article
U.S. Cyber Authorities Investigate 'Binance Trust Wallet' iOS App for Vulnerabilities
The wallet has been the victim of multiple cyber attacks during 2023.
Updated Mar 9, 2024, 2:15 a.m. Published Feb 15, 2024, 10:16 a.m.
Make us preferred on Google
- U.S. cyber authorities are investigating a possible vulnerability in the Binance Trust Wallet iOS app.
- The vulnerability would allow attackers to steal money by guessing security words known as mnemonics.
A potential vulnerability for the iOS version of "Binance Trust Wallet" has been listed by the National Institute of Standards and Technology (NIST), a U.S. agency that sets best practices and standards for technology and cyber security.
The vulnerability was added to the CVE database, which lists serious issues that could have, or have already, caused material damage or losses, on Feb. 8. It is being investigated by NIST to determine the real-world severity of the vulnerability.
STORY CONTINUES BELOW
The flaw has already been exploited in the wild, according to the database entry. In July 2023, it allowed attackers to guess security words and steal money from digital wallets because of the way it used the trezor-crypto library.
"An attacker can systematically generate mnemonics for each timestamp within an applicable timeframe, and link them to specific wallet addresses in order to steal funds from those wallets," NIST wrote in its update.
Trust Wallet suffered multiple cyber incidents in 2023, generating over $4 million in losses. The wallet was acquired by Binance in 2018. Binance has since released its own Web3 wallet.
"Trust Wallet is now a separate legal entity that is not part of the Binance group and operates independently from Binance.com," a Binance spokesperson said in an email.
Trust Wallet's X (formerly Twitter) profile has not posted about the vulnerability.
UPDATE (Feb. 15, 10:54 UTC): Adds Binance statement in penultimate paragraph.
More For You
KuCoin captured a record share of centralised exchange volume in 2025, with more than $1.25tn traded as its volumes grew faster than the wider crypto market.
What to know:
- KuCoin recorded over $1.25 trillion in total trading volume in 2025, equivalent to an average of roughly $114 billion per month, marking its strongest year on record.
- This performance translated into an all-time high share of centralised exchange volume, as KuCoin’s activity expanded faster than aggregate CEX volumes, which slowed during periods of lower market volatility.
- Spot and derivatives volumes were evenly split, each exceeding $500 billion for the year, signalling broad-based usage rather than reliance on a single product line.
- Altcoins accounted for the majority of trading activity, reinforcing KuCoin’s role as a primary liquidity venue beyond BTC and ETH at a time when majors saw more muted turnover.
- Even as overall crypto volumes softened mid-year, KuCoin maintained elevated baseline activity, indicating structurally higher user engagement rather than short-lived volume spikes.
More For You
Deus X CEO Tim Grant: We aren't replacing finance; we're integrating it
The Deus X CEO discussed his journey into digital assets, the company's infrastructure-led growth strategy, and why his Consensus Hong Kong panel promises "real talk only."
What to know:
- Tim Grant entered crypto in 2015 after early exposure to Ripple and Coinbase, drawn by blockchain’s ability to improve traditional finance rather than replace it.
- Deus X combines investing and operating to build regulated digital finance infrastructure across payments, prime services, and institutional DeFi.
- Grant will be speaking at Consensus Hong Kong in February.
Top Stories
