安全预警:GitHub出现伪装“跟单机器人”的私钥窃取恶意项目
2025-12-21 03:46:25
GitHub 项目 polymarket-copy-trading-bot 被植入恶意代码。该程序在启动时会自动读取用户 .env 文件中的钱包私钥,并通过隐藏的恶意依赖包 [email protected] 外传至黑客服务器,导致资产被盗。
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.