Tangem, a cryptocurrency wallet provider, has fixed a critical security vulnerability in its mobile app that inadvertently collected some users’ private keys through their email communications. The issue arose from a bug in the app’s log processing, which logged private keys when users created wallets. This data could be accessed by Tangem support staff during customer interactions, prompting concerns from the community about users' funds being at risk. Reddit users highlighted that this situation could compromise all Tangem users, as private keys remained in email histories and logs. Although Tangem stated that the bug affected a limited number of users—specifically, those who generated seed phrases and submitted support requests immediately—it has been criticized for its slow response. The company has deleted all logs and attachments related to the incidents and advised users to update their mobile applications to prevent future leaks. Despite the critical nature of the problem, Tangem has not issued a public statement on its social media channels or responded to media inquiries about the matter.

Source 🔗