Coin responds to SparkKitty virus infection: Risky SDK was implanted, but related functions never took effect, user data is always safe

Odaily News Securelist released a report today pointing out that "Coin" is suspected to be infected with the new malicious virus SparkKitty, which has attracted widespread attention in the market. In response, the Coin team issued a response, admitting that it had accessed the third-party SDK provided by the Bitdu exchange, but stated that the high-risk functions involving album permissions and image uploads in the SDK were disabled from beginning to end, and were never activated or triggered, and user data was not affected in any way.
According to Coin, Bitdu plans to acquire Coin in 2023 and requires access to its SDK for evaluating user activity. During testing, the Coin technical team found that the SDK had suspicious behavior of inducing users to open album permissions and upload photos. Subsequently, the upload function was completely blocked through the interface to ensure that the potential risk function could not run.
Currently, Coin has launched a full code security review and promised to upgrade the third-party SDK review and partner background investigation process to prevent similar incidents from happening again.