few months ago 3 old wallets got drained out of the blue, only thing in common being BSC activity in 2020

im usually very careful with how i store keys so this left me confused until i talked to @AzFlin today

it seems like the source could be a @binance wallet extension compromise

the chrome extension (Binance Extension Wallet/BEW/币安链钱包) was mostly popular in 2020-2021 during BSC season days and i personally uninstalled it around 2022

if this is the attack vector it sounds like binance was somehow storing the pkeys on their servers and if you ever used the extension your wallets are compromised

many users are reporting drains recently and quite a few of them have usage of this extension in common

my wallets that were drained were NOT generated using this extension, only a few keys that i imported were actually drained solidifying the theory

the extension was recently shut down but id love if @binance could start an internal investigation and see what went wrong