Let me get this straight: did you use existing funded wallets to create a multisig, and those wallets still have funds while the multisig got emptied? In that case you'd better move your funds to a new secure wallet before the attacker realizes he left something behind!

I'm quoting your post from another topic here:
It sounds like you even had paper wallets on an online system, instead of using cold storage for them.


So those wallets were on different devices? Any chance you stored the seed words on your computer? If multiple wallets on different devices "get hacked", you must have had more than one device compromised. Could someone have gained physical access to your devices?

But how about the cosigner keys/seed phrase when you setup the MultiSig wallet?

How did you set the cosigner 2 and 3 during wallet creation, there are options there to either put a master (private/public) key or seed:
https://www.talkimg.com/images/2025/02/18/qmO7D.png

If "Cosigner seed", and you pasted your Exodus and Trust Wallet's seed, then the hacker can just use that MultiSig wallet to spend without needing your Ledger device to cosign.

If "Cosigner key": Did you pasted your Exodus and Trust Wallet's (master) extended public key or (master) extended private key?
If the latter, then it's the same as putting the cosigner seed, the MultiSig wallet isn't properly setup, it's a MultiSig wallet already capable of providing two of the required signatures.
If the former, then it's something else, probably compromised backup seed phrases.