Home > Quick > Body

Security Alert: GitHub Appears Private Key Stealing Malicious Project Masquerading as "Copy Bot"

clock
2025-12-21 03:46:25
The GitHub project polymarket-copy-trading-bot implanted with malicious code. When launched, the program automatically reads the wallet private key in the user.env file and transmits it to the hacker server through a hidden malicious dependency package [email protected], resulting in asset theft.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
New Tab Page - Desk3 | Plugin
Stay ahead of the game in the cryptocurrency space.