PANews reported on December 5th that SlowMist's Yu Xian posted on the X platform that user Babur disclosed the theft of $27 million worth of cryptocurrency assets. Analysis revealed that the stolen assets primarily involved two addresses: Solana address 91xu and Ethereum Safe multisignature address 0xD2. The two largest thefts totaled over $18 million. The hacker addresses are 71fM (Solana) and 0x4f (Ethereum), and some funds have already been transferred to the Ethereum network. The incident is suspected to have been caused by a computer malware infection; the user's private keys were leaked after double-clicking and running a malicious file, including the two signing private keys for Safe multisignature, which may have been stored on the infected computer.