Open Source Crypto Script Found with Backdoor, Stealing User Keys

A critical vulnerability has been uncovered within the t3rn-swap open-source script, prompting concerns about security practices in the cryptocurrency space. The discovery was made when a community member identified code that secretly sent private keys to a specified Telegram ID. This backdoor functionality was found within the record_config function on GitHub. User @Xuegaogx highlighted the danger, urging affected users to replace their affected private keys immediately. .
The author of t3rn-swap, @hao3313076, admitted to being hacked, leading to a mixed response among community members who remain skeptical about his claim.