It appears this is mostly targeting specific hot wallet software that may have some compromised downstream signing library, since the wallets are closed source it is difficult for the community to get to the root of the problem.<p>Storing value on closed source hot wallets is generally not a good idea.