imToken releases a security statement: Wallet private key randomness is secure, no users are affected

ChainCatcher news, imToken released a security statement clarifying concerns about "non-custodial wallet private key randomness" raised by recent U.S. law enforcement news. The official statement indicates that users of both the imToken software wallet and the imKey hardware wallet are not affected.

The statement points out that the imToken software wallet generates private keys locally using secure random number sources from iOS and Android systems, and the core codebase TokenCore has been open-sourced and auditable since 2018; private keys are never transmitted over the network. The imKey hardware wallet uses a true random number generator (TRNG) within a secure chip to generate mnemonic phrases and private keys. imToken emphasizes that both products are non-custodial wallets, do not store user private keys or mnemonic phrases, and reminds users to properly back up their mnemonic phrases.