ChainThink report, March 17: According to a disclosure from the official account "Cyber Intelligence Research Institute," a Chinese hacking group has experienced internal conflict over profit distribution. A team member publicly revealed that they previously conducted supply chain attacks to steal approximately $7 million in cryptocurrency assets, targeting platforms including the encrypted wallet Trust Wallet.

According to the leaked information, the group operated under the guise of a cybersecurity company named "Wuhan Anxun Technology," publicly offering services such as vulnerability mining, network penetration testing, and security consulting. However, internally, the team was engaged in illicit activities involving cryptocurrency theft and other gray-market operations. The members stated they exploited Electron client supply chain vulnerabilities, performed plugin reverse engineering, and utilized automated tools to mass-extract mnemonic phrases and scan multi-chain assets across networks including Ethereum, BNB Chain, and Arbitrum.

The whistleblower claimed the team developed automated tools to scan mnemonic-based assets at scale, used remote access programs to exfiltrate wallet data, and subsequently transferred and fragmented the stolen funds. The attacks reportedly targeted 37 different tokens across multiple blockchain networks.

The incident was triggered by an internal dispute over profit sharing. The leaker stated that disagreements over unfair revenue distribution led to a rift with the team leader, and after their severance compensation remained unfulfilled, they decided to disclose evidence publicly and plan to surrender to law enforcement authorities.

As of now, these allegations have not been officially verified, and further investigation is required to confirm the full details. Industry experts note this case underscores ongoing risks related to cryptocurrency wallet supply chain security and plugin integrity, as well as the rising trend of targeted attacks against high-value users.