CoinStats app hacked - Sent out a notification containing a wallet drainer
If your wallet address is in this affected list, please move your funds immediately using your exported private key (if you have exported previously)
App and website is currently offline.
From their twitter:
Update on the Security Incident
The attack has been mitigated, and we have temporarily shut down the application to isolate the security incident.
None of the connected wallets and CEXes were impacted.
Thanks to the immediate incident response from the CoinStats team, only 1.3% of all CoinStats Wallets were affected, totaling 1,590 wallets. The list might change as the investigation is ongoing but we don’t expect significant changes.
If your wallet address is in this affected list, please move your funds immediately using your exported private key (if you have exported previously): https://docs.google.com/spreadsheets/d/1Lwxpy2T6W7aptjBJUio0Z01zihsqknXn6KPhzawQLVI/…
We are actively investigating the extent of funds moved and will provide updates as soon as they become available. We're actively working to bring the app back online as quickly as possible. Thank you for your patience.
The first update was:
We are currently experiencing a security incident affecting wallets created directly within CoinStats; this does not impact externally connected wallets. If you have your private key exported, move your funds ASAP