Slow Fog CISO: Beware of hidden malicious code in a certain Polymarket copy trading bot program that steals private keys

The Chief Information Security Officer of Slow Fog Technology, 23pds, forwarded a community user's tweet on the X platform showing that a developer of a Polymarket follow-trade bot program hid malicious code in the GitHub code. The program, when launched, automatically reads the user's ".env" file (which contains wallet private keys) and then sends the private keys to a hacker server, resulting in the theft of funds. The program author repeatedly modified and submitted code on GitHub, deliberately hiding the malicious package.

23pds stated that this method should be taken seriously, "it's not the first time, and it won't be the last."