🚀 GitHub Project Compromised by Malicious Code
#GitHub #MaliciousCode #PolymarketCopyTradingBot #AssetTheft #CyberSecurity #WalletPrivateKeys #Hacker #ExcluderMcpPackage
According to Odaily, the GitHub project known as polymarket-copy-trading-bot has been compromised by malicious code. The program is designed to automatically access the user's .env file upon startup, extracting wallet private keys. These keys are then transmitted to a hacker's server through a concealed malicious dependency package, excluder-mcp-package@1.0.4, resulting in asset theft.#GitHub #MaliciousCode #PolymarketCopyTradingBot #AssetTheft #CyberSecurity #WalletPrivateKeys #Hacker #ExcluderMcpPackage