Possible vulnerability in the Sync feature | MetaMask Hack
Hello, Brave community.
I’m investigating the hack of my Metamask and asking for help to figure out whether it is possible to hack the wallet through Brave Sync. I had checked dozens of different scenarios and still can’t find the attack vector. One explanation is some vulnerability in Brave Sync, which I used on the same day as the hack happened to transfer all data on a brand new notebook.
During the Sync, I chose all options for Sync, including Passwords and Extension synchronization. What if my Brave seed was compromised previously, and when I had open the access, the hackers able to receive everything from Brave sync servers.
It’s still unclear how they hacked Brave in the first place and decrypt the MM password (it’s BruteForce resistant). But I performed dozen of checks for viruses and rootkits. I didn’t expose to phishing or social engineering and now run out of other versions.