Tangen accused of exposing crypto private keys via emails

A critical security flaw was recently discovered at crypto wallet provider Tangem. This vulnerability exposed users' private keys via emails, putting investors' funds at risk. The flaw was discovered after users reported that their private keys were accessible in email accounts and to Tangem employees.

A private key exposed in a data stream floating in a matrix of red and black numbers, representing the compromised crypto data.

Tangem and the flaw that exposes users' private keys

The issue came to light on December 29, when a Reddit user accused Tangem of collecting users' private keys through emails. These private keys were stored in the email history of crypto users and Tangem, as well as in Tangem's ticket tracking system, making them accessible to company employees.

Tangem acknowledged the problem on December 30, explaining that it was the result of a bug in the application's log processing system. The company clarified that private keys generated when creating a crypto wallet were mistakenly recorded in the application logs, which could then be accessible during interactions with the support team. An update has been released to correct this issue.

Tangem assured crypto users that all logs and attachments sent to its support team have been permanently deleted. The company also emphasized that only a small portion of users, those who generated a recovery phrase and contacted support immediately, could be affected.

€20 bonus for registering on Bitvavo
This link uses an affiliate program

Lack of transparency in the crypto industry

Despite releasing a patch, Tangem has faced criticism for its lack of transparency. The crypto community criticizes the company for not mentioning vulnerability or its resolution on its official website and social networks. Tangem still urged all users to immediately update their mobile applications.

This incident highlights the critical importance of robust security measures in the crypto industry. Users should remain vigilant and ensure their applications are always up to date to avoid such vulnerabilities.

Maximize your Tremplin.io experience with our 'Read to Earn' program! For every article you read, earn points and access exclusive rewards. Sign up now and start earning benefits.

Similar Posts