On April 3, according to Twitter user @0xAA_Science, many people used Sunflower (remote desktop software) to receive airdrops in the past two days, and their encrypted wallets were stolen. Hackers can exploit this vulnerability to remotely control the user's wallet to transfer money. The user said that if the computer has used remote desktop software, including Sunflower, todesk, TeamViewer, etc., it is recommended to uninstall it.

According to the information it shared, Sunflower Remote Control Software is a remote control software.

In February 2022, the Internet disclosed that there is a remote command execution vulnerability in the old version of the Sunflower remote control software. The Sunflower remote control software will listen to high ports (default is above 40000). An attacker can construct a malicious request to obtain the Session, and then use the Sunflower Remote after passing the identity authentication. Control software-related API interfaces to execute arbitrary commands.