Verify a decision

{"actor":"system:backfill","investigation_id":"ebc658cd-7c9c-41a8-8ed3-dc7183c90a16","kind":"publish","page_slug":"myalgo","published_at":"2026-05-28T16:12:45.109Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"MyAlgo","sections":[{"content":"","heading":"","severity":"low","sources":[{"credibility":2,"name":"Rand Labs Releases the New Version of My Algo Algorand Wallet","type":"news_article","url":"https://crypto-economy.com/rand-labs-releases-the-new-version-of-my-algo-algorand-wallet/"},{"credibility":1,"name":"Introducing MyAlgo Connect for DApp Developers - Algorand Developer Portal","type":"official","url":"https://developer.algorand.org/articles/introducing-myalgo-connect/"},{"credibility":1,"name":"Algorand Developer Stories: Rand Labs","type":"official","url":"https://info.algorand.foundation/developer-stories/randlabs"}]},{"content":"","heading":"","severity":"critical","sources":[{"credibility":2,"name":"Feb 2023 - MyAlgo Web Wallet JavaScript CDN Exploit ($9.6M) - Quadriga Initiative","type":"research","url":"https://quadrigainitiative.com/casestudy/myalgowebwalletjavascriptcdnexploit.php"},{"credibility":2,"name":"Addressing Rumors and Recommendations Following the MyAlgo Wallet Hack - Coinspect Security","type":"research","url":"https://coinspect.medium.com/addressing-rumors-and-recommendations-following-the-myalgo-wallet-hack-77b249a80d18"},{"credibility":2,"name":"MyAlgo Unveils How Attackers Carried Out Recent Hack - CoinEdition via Investing.com","type":"news_article","url":"https://www.investing.com/news/cryptocurrency-news/myalgo-unveils-how-attackers-carried-out-recent-hack-3035319"},{"credibility":2,"name":"Preliminary Advisory Report - Algorand 20-02-2023 Thefts - D13.co","type":"research","url":"https://d13.co/algorand-20-02-2023-thefts-preliminary-advisory-report/"}]},{"content":"","heading":"","severity":"critical","sources":[{"credibility":1,"name":"Algorand Wallet MyAlgo Advises Users to Withdraw Funds After $9.6M Exploit - CoinDesk","type":"news_article","url":"https://www.coindesk.com/business/2023/02/28/algorand-wallet-myalgo-struck-by-96m-exploit"},{"credibility":1,"name":"MyAlgo users urged to withdraw, as cause of $9.2M hack remains unknown - CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown"},{"credibility":2,"name":"SimpleSwap Returns Funds Stolen In The MyAlgo Hack","type":"official","url":"https://simpleswap.io/blog/simpleswap-returns-funds-stolen-in-the-myalgo-hack"},{"credibility":1,"name":"Algodex reveals wallet infiltrated by malicious actor as MyAlgo renews warning - CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/algodex-reveals-wallet-infiltrated-by-malicious-actor-as-myalgo-renews-warning-withdraw-now"},{"credibility":2,"name":"MyAlgo hack: Fifth Wave - Addresses & Data - D13.co","type":"on_chain","url":"https://d13.co/myalgo-hack-fifth-wave-addresses-data/"}]},{"content":"","heading":"","severity":"high","sources":[{"credibility":2,"name":"Algorand blasted over inaction on ongoing wallet drain hack - CryptoSlate","type":"news_article","url":"https://cryptoslate.com/algorand-blasted-over-inaction-on-ongoing-wallet-drain-hack/"},{"credibility":2,"name":"A Truly Difficult Time: Algorand Foundation Releases Hack Statement - Blockhead","type":"news_article","url":"https://www.blockhead.co/2023/03/09/a-truly-difficult-time-algorand-releases-hack-statement/"},{"credibility":2,"name":"Algorand facing criticism for ignoring the week-old MyAlgo wallet hack - Inside Bitcoins","type":"news_article","url":"https://insidebitcoins.com/news/algorand-facing-criticism-for-ignoring-the-week-old-myalgo-wallet-hack"},{"credibility":2,"name":"Algorand Wallet MyAlgo Urges Users to Withdraw Funds After $9.2M Exploit - Decrypt","type":"news_article","url":"https://decrypt.co/122360/algorand-wallet-myalgo-urgest-users-withdraw-funds-9-2m-exploit"}]},{"content":"","heading":"","severity":"high","sources":[{"credibility":2,"name":"Addressing Rumors and Recommendations Following the MyAlgo Wallet Hack - Coinspect Security","type":"research","url":"https://coinspect.medium.com/addressing-rumors-and-recommendations-following-the-myalgo-wallet-hack-77b249a80d18"},{"credibility":2,"name":"Preliminary Advisory Report - Algorand 20-02-2023 Thefts - D13.co","type":"research","url":"https://d13.co/algorand-20-02-2023-thefts-preliminary-advisory-report/"},{"credibility":2,"name":"MyAlgo to Unveil Preliminary Findings Regarding the $9M Hack - CoinEdition via Investing.com","type":"news_article","url":"https://www.investing.com/news/cryptocurrency-news/myalgo-to-unveil-preliminary-findings-regarding-the-9m-hack-3033979"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":2,"name":"MyAlgo Wallet: Security Breach and 2024 Sunset Guide - Bitget Wallet","type":"news_article","url":"https://web3.bitget.com/crypto-news/myalgo-wallet-history-security-and-alternatives"},{"credibility":1,"name":"Algorand Wallet Shutdown Page","type":"official","url":"https://wallet.myalgo.com/shut-down"}]}],"sources_used":[],"summary":"MyAlgo was a non-custodial web browser wallet for the Algorand blockchain, developed by Rand Labs. Between January and March 2023, a supply-chain attack via a compromised CDN (content delivery network) resulted in the theft of approximately $9.6 million in ALGO and USDC across at least five distinct attack waves. The wallet was officially shut down on January 30, 2024, following the incident and subsequent user attrition.","timeline":[{"date":"2021-02-16","event":"Rand Labs releases updated MyAlgo wallet with multisig support, establishing it as a primary Algorand wallet.","source":"GlobeNewswire","source_url":"https://www.globenewswire.com/news-release/2021/02/16/2176498/0/en/My-Algo-releases-new-Algorand-Wallet-with-Multisig-Support.html"},{"date":"2023-01-21","event":"Malicious JavaScript worker uploaded to the CDN serving wallet.myalgo.com, beginning silent private key exfiltration from users who unlocked their wallets.","source":"Quadriga Initiative case study","source_url":"https://quadrigainitiative.com/casestudy/myalgowebwalletjavascriptcdnexploit.php"},{"date":"2023-02-19","event":"First wave of active thefts begins; attackers use harvested credentials to drain approximately $7.2 million confirmed across 17 addresses.","source":"D13.co preliminary advisory report","source_url":"https://d13.co/algorand-20-02-2023-thefts-preliminary-advisory-report/"},{"date":"2023-02-21","event":"First theft wave concludes. Total losses in this wave estimated at $9.2-9.6 million including 19.5M ALGO and 3.5M USDC. ZachXBT publicly quantifies stolen amounts.","source":"CoinDesk","source_url":"https://www.coindesk.com/business/2023/02/28/algorand-wallet-myalgo-struck-by-96m-exploit"},{"date":"2023-02-27","event":"MyAlgo issues public warning advising all mnemonic wallet users to immediately withdraw funds. New wallet version released, ending the CDN injection.","source":"Decrypt","source_url":"https://decrypt.co/122360/algorand-wallet-myalgo-urgest-users-withdraw-funds-9-2m-exploit"},{"date":"2023-02-28","event":"CoinDesk publishes initial reporting. ChangeNOW freezes approximately $1.5 million in stolen funds transiting through its platform.","source":"CoinDesk","source_url":"https://www.coindesk.com/business/2023/02/28/algorand-wallet-myalgo-struck-by-96m-exploit"},{"date":"2023-03-05","event":"Second wave of thefts begins, targeting additional compromised credentials.","source":"D13.co fifth wave data","source_url":"https://d13.co/myalgo-hack-fifth-wave-addresses-data/"},{"date":"2023-03-06","event":"Algorand Foundation publicly acknowledges the exploit after approximately two weeks of silence. Algodex also reports its company wallet was infiltrated by a malicious actor (loss under $55,000). Lofty.ai reports $65,000 theft on Algorand.","source":"CoinTelegraph","source_url":"https://cointelegraph.com/news/algodex-reveals-wallet-infiltrated-by-malicious-actor-as-myalgo-renews-warning-withdraw-now"},{"date":"2023-03-09","event":"Algorand Foundation CTO John Woods releases statement confirming the exploit is not caused by an underlying issue with the Algorand protocol or SDK.","source":"Blockhead","source_url":"https://www.blockhead.co/2023/03/09/a-truly-difficult-time-algorand-releases-hack-statement/"},{"date":"2023-03-17","event":"Fourth wave of thefts occurs.","source":"D13.co fifth wave data","source_url":"https://d13.co/myalgo-hack-fifth-wave-addresses-data/"},{"date":"2023-03-31","event":"Fifth and final documented wave of thefts occurs.","source":"D13.co fifth wave data","source_url":"https://d13.co/myalgo-hack-fifth-wave-addresses-data/"},{"date":"2023-04-01","event":"Exploit details — including the CDN injection date of January 21 — are publicly revealed. MyAlgo discloses preliminary findings identifying CDN MITM as the attack vector.","source":"Quadriga Initiative case study","source_url":"https://quadrigainitiative.com/casestudy/myalgowebwalletjavascriptcdnexploit.php"},{"date":"2024-01-30","event":"MyAlgo wallet officially shut down and decommissioned. Platform no longer accessible for transaction signing.","source":"Bitget Wallet guide","source_url":"https://web3.bitget.com/crypto-news/myalgo-wallet-history-security-and-alternatives"}]},"v":1}