Anatomy of a Solana Wallet Drainer: Owner Reassignment, Durable Nonces, and Blinks Phishing

The Anatomy of a Solana Wallet Drainer: Owner Reassignment, Durable Nonce Tricks, and Blinks Phishing Solana users lost over $90 million to phishing in the first half of 2025. By early 2026, the drainer kits have evolved again — and this time, they're bypassing wallet simulations entirely. This isn't about smart contract bugs. It's about weaponizing legitimate Solana features against users who trust what their wallet shows them. Let's dissect the three most dangerous wallet-draining techniques active on Solana right now, and what developers and users can do to defend against them. Attack #1: The assign Instruction — Silent Owner Reassignment Why Solana's Account Model Makes This Possible On Ethereum, your EOA is controlled by whoever holds the private key. Period. On Solana, every account has an explicit Owner field that determines which program has write access to it. By default, your wallet account is owned by the System Program. Here's the critical detail most users don't know: the