Tangem wallet accidentally collected users' seed phrase due to email-related glitch

Odaily reported that the cryptocurrency wallet service provider Tangem recently fixed a major security vulnerability in its mobile application, which had led to the accidental collection of some users' private keys through email. Previously, a Reddit user had questioned this, pointing out that Tangem was exposing users' private keys to email accounts and its staff, threatening the security of investors' funds. Some users noted that Tangem did not properly respond to the issue, and that users' private keys may have remained in various email histories and ticket tracking systems, posing a security threat to all Tangem users. On December 30, Tangem acknowledged the problem and explained that it was a bug in the mobile app's log processing, which has now been resolved. When creating a wallet using the seed phrase, the private key was incorrectly recorded in the app logs, which could be accessed when interacting with the support team. On the same day, Tangem released an app update, but the website did not mention the specific details. Tangem also confirmed that it has permanently deleted all logs and attachments sent to the support team, ensuring no data remains. Although Tangem stated that the vulnerability only affected a small number of users, some members of the crypto community were still dissatisfied with its low-key handling of the issue. As of December 31, Tangem had not posted any related announcements on social media. To prevent potential private key leaks, all Tangem users are advised to immediately update their mobile applications.