Malicious code implanted in polymarket copy trading project polymarket-copy-trading-bot to steal private keys
Show original
According to Odaily, the GitHub project polymarket-copy-trading-bot has been found to contain malicious code. When the program is launched, it automatically reads the user's wallet private key from the .env file and transmits it to a hacker's server via a hidden malicious dependency package, excluder-mcp-package@1.0.4, resulting in asset theft.
0
0
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
PoolX: Earn new token airdrops
Lock your assets and earn 10%+ APR
Lock now!
You may also like
Cango Inc. receives new equity investment from EWCL
ForesightNews•2025/12/29 11:06
GSTechnologies acquires Polish virtual asset service provider Finferno
PANews•2025/12/29 10:51
Trending news
MoreCrypto prices
More
Bitcoin
BTC
$87,652.89
-0.20%
Ethereum
ETH
$2,962.09
+0.66%
Tether USDt
USDT
$0.9988
-0.04%
BNB
BNB
$854.14
-0.06%
XRP
XRP
$1.87
+0.13%
USDC
USDC
$0.9997
-0.00%
Solana
SOL
$125.28
+0.54%
TRON
TRX
$0.2820
-0.50%
Dogecoin
DOGE
$0.1253
+1.01%
Cardano
ADA
$0.3703
-0.37%
How to buy BTC
Bitget lists BTC – Buy or sell BTC quickly on Bitget!
Trade now
Become a trader now?A welcome pack worth 6200 USDT for new users!
Sign up now