China-Based Hacker Group Steals $7M in Crypto via Wallet Supply Chain Attacks

TheNewsCryptoPublished on 2026-03-18Last updated on 2026-03-18

Abstract

A Chinese hacker group operating under the name Wuhan Anshun Technology has been accused of stealing approximately $7 million in cryptocurrency through supply-chain attacks targeting users of wallets like Trust Wallet. The group used malicious browser extensions and compromised Electron-based apps to collect wallet information and transfer funds, primarily on Ethereum, BNB Chain, and Arbitrum. Details emerged after an internal member leaked information due to disputes over profit sharing, releasing evidence and expressing intent to surrender to authorities. While the case remains unconfirmed by officials, it highlights significant security risks in crypto software. Experts advise caution when updating or installing wallet-related tools.

A Chinese hacker collective has been charged with stealing about $7 million in cryptocurrency by using supply-chain attacks to target users of cryptocurrency wallets. According to reports, the group claimed to be a security services provider while operating under the name Wuhan Anshun Technology. On the other hand, members were allegedly conducting illicit operations to pilfer cryptocurrency assets. Wallets like Trust Wallet and other platforms are thought to have been targeted by the attackers.

How the Group works

The group works by using malicious browser extensions and compromised Electron-based apps with remote access tools. They helped collect wallet information and transfer funds. It mainly targeted blockchains such as Ethereum, BNB Chain, and Arbitrum.

The details of the operation came out after a member of the group leaked information. The person claimed there was a disagreement over profit sharing and unpaid compensation. After the disagreement, the individual reportedly released evidence of the operation and said they plan to surrender to authorities. Authorities have not officially confirmed the case, and no formal investigation details have been released so far.

This incident demonstrates that the software and tools used with the wallets are also risky. Experts advise exercising caution when updating software and refraining from installing unknown updates. The case highlights growing risks in crypto security, even though the claims have not yet been verified.

Highlighted Crypto News:

Juliana Stratton Defeats Crypto-Backed Krishnamoorthi in Illinois Senate Primary

TagsBlockchainchinaCryptocurrency

Related Questions

QWhat is the name of the Chinese hacker group accused of stealing $7 million in cryptocurrency?

AThe group operated under the name Wuhan Anshun Technology.

QHow did the hacker group primarily carry out their attacks to steal cryptocurrency?

AThey used malicious browser extensions and compromised Electron-based apps with remote access tools.

QWhich specific blockchains were the main targets of this hacking group's attacks?

AThe group mainly targeted Ethereum, BNB Chain, and Arbitrum.

QWhat event led to the public disclosure of the group's operation details?

AA member of the group leaked information due to a disagreement over profit sharing and unpaid compensation.

QWhat precautionary advice do experts give in light of this incident?

AExperts advise exercising caution when updating software and refraining from installing unknown updates.

Related Reads

Can Apple Continue to Grow in the AI Era Without Cook?

Apple has named John Ternus, a 25-year company veteran and current head of hardware engineering, as its next CEO, effective September 1. He succeeds Tim Cook, who transitions to executive chairman. Ternus is characterized as a "systems-oriented" leader—a collaborative, decisive insider known for his deep understanding of Apple's products and unique functional organizational structure. His career highlights include pragmatically updating the Mac Mini without costly redesigns, playing a key role in developing AirPods amidst internal tensions, and leading the transition of Macs to Apple's own silicon. However, he is not seen as a high-risk visionary like Steve Jobs or a supply-chain innovator like Cook. Ternus takes charge as Apple faces significant challenges: the need to find its next major product beyond the iPhone and to catch up in the AI era, where competitors are ahead in conversational AI, and Siri is considered outdated. The central question is whether he can leverage Apple's hardware strength to build a new platform advantage or if the company will primarily optimize its existing ecosystem. His success hinges on making bold strategic bets in a shifting technological landscape.

marsbit3m ago

Can Apple Continue to Grow in the AI Era Without Cook?

marsbit3m ago

Anthropic Removes Claude Code from Pro Plan, Developer Community Erupts, OpenAI Seizes the Opportunity to Strike

Anthropic has removed its coding agent, Claude Code, from the $20/month Pro plan, triggering strong backlash from the developer community. The change was reflected in updated pricing pages and documentation, which now state that Claude Code is only available to Max plan subscribers, starting at $100/month. Anthropic’s growth lead, Amol Avasare, described the move as a "small-scale test" affecting only 2% of new users, but the broad updates to public documentation contradicted this claim. He later acknowledged that rising computational costs due to increased usage made the previous pricing structure unsustainable. Developers expressed frustration on platforms like Hacker News, Reddit, and GitHub, with some calling it a reason to switch to local or open-source models like Llama or Mistral. In response, OpenAI quickly emphasized that its competing product, Codex, remains available in both free and $20/month Plus plans, and reaffirmed its commitment to transparent communication with users. Google’s Gemini CLI remains free, adding further competitive pressure. The incident highlights growing tension between AI service affordability and the high compute costs of advanced coding assistants.

marsbit3m ago

Anthropic Removes Claude Code from Pro Plan, Developer Community Erupts, OpenAI Seizes the Opportunity to Strike

marsbit3m ago

IOSG Founder: The Most Dangerous Prisoner's Dilemma in DeFi History

IOSG Founder: DeFi's Most Dangerous Prisoner's Dilemma A $230M bad debt remains unresolved, with Aave Collector holding over $200M in liquid assets and LayerZero recently raising $120M—both fully capable of covering the losses. Aave has lost $8.45B in TVL in under two days, while the entire DeFi ecosystem has bled $13.2B. The silence from all parties involved is exacerbating the crisis. The author recalls the DeFi spirit of 2020, when MakerDAO faced collapse during the March 12 crash but took responsibility by auctioning MKR to cover bad debt. Today, in contrast, there is only silence. Users are withdrawing funds not just from Aave but from Spark and other DeFi protocols, voting with their feet. This loss of trust threatens the entire ecosystem. This is not just Aave’s problem. Spark, MakerDAO, and all Ethereum DeFi protocols must coordinate. Trust, once broken, affects everyone. Time is critical—every hour of silence leads to more capital leaving permanently. The author urges Aave’s Stani Kulechov, Vitalik Buterin, AaveDAO, KelpDAO, LayerZero, and RuneKek to communicate publicly and reassure the market. Silence is the worst option.

marsbit19m ago

IOSG Founder: The Most Dangerous Prisoner's Dilemma in DeFi History

marsbit19m ago

XRP Ledger Transactions Are Surging Again, Here Are The Numbers

XRP Ledger is experiencing a significant surge in activity, particularly in AccountSet transactions, which are used to configure account settings and indicate backend or institutional activity rather than simple transfers. These transactions recently hit an all-time high of over 120,000, reflecting infrastructure development. This is part of a broader increase in network usage, with daily transactions reaching nearly 3 million in 2026, up from around 1 million in mid-2025. The number of non-empty wallets has also surpassed 7.7 million. Despite this growth, the price of XRP remains below its 2025 peak, with analysts suggesting regulatory clarity, such as the CLARITY Act, may be needed for a price repricing.

bitcoinist24m ago

XRP Ledger Transactions Are Surging Again, Here Are The Numbers

bitcoinist24m ago

VCs on 2025 Crypto Investments: 84% of 118 Tokens Break Issue Price, Only One Type of Company is Quietly Making Money

Crypto investor Ching Tseng categorizes the market into four quadrants based on two axes: crypto-native vs. traditional finance (TradFi)-oriented, and having traction vs. no traction. In 2025, 84.7% of 118 tracked token launches fell below their issuance price, with a median fully diluted valuation drop of 71%. Crypto-native projects without traction are experiencing massive capital destruction, often relying on speculative narratives without sustainable revenue or user retention. Crypto-native teams with traction, often built in prior cycles, generate real revenue but face structural challenges with their tokens lacking direct value capture mechanisms. While some have implemented successful buyback programs, the core issue remains finding growth beyond crypto volatility. TradFi-oriented startups without traction face long, costly enterprise sales cycles but benefit from a robust M&A environment, with crypto acquisitions reaching a record $8.6 billion in 2025. The current winners are TradFi-oriented companies with traction, particularly in the Real World Asset (RWA) tokenization space, which grew from $5.5B to $18.6B in 2025. They are winning through enterprise sales, building alliances, and improving unit economics on established compliance stacks. Their main risk is being bypassed by large incumbent institutions building their own infrastructure. The overarching theme is market maturation, where narrative alone is insufficient for long-term success.

marsbit42m ago

VCs on 2025 Crypto Investments: 84% of 118 Tokens Break Issue Price, Only One Type of Company is Quietly Making Money

marsbit42m ago

Trading

Spot
Futures
活动图片