Samourai Wallet's official domain has been compromised and is now distributing malware through a phishing site impersonating the original project, according to security warnings circulating in the crypto community. Users are being urged to avoid downloading anything from the domain and never to input seed phrases, private keys, or recovery data on the compromised site.
The wallet project has been defunct since the arrest of its core development team. Law enforcement action against Samourai Wallet earlier this year resulted in criminal charges against the project's founders, effectively ending active development and support. The hijacked domain now exploits the project's former reputation to target users with outdated bookmarks or cached links to the legitimate platform.
Security researchers warn that any existing installations of Samourai Wallet software should not be updated or reinstalled from current online sources. Users holding cryptocurrency in wallets associated with the project face heightened risk of compromise if they interact with the compromised domain or any recovery attempts tied to it. Those seeking to access funds stored in Samourai wallets should employ alternative self-custody solutions and verify software authenticity through independent channels rather than domain-based downloads.