Recently, a user sought code help from ChatGPT when trying to develop an automatic top posting robot for pump.fun, but was unexpectedly scammed. The user followed the code guidance provided by ChatGPT and visited a recommended Solana API website. However, this website was actually a scam platform, causing the user to lose about $2,500.

According to the user, part of the code required submitting a private key through an API. Due to the busy operation, the user used his main Solana wallet without review. Looking back, he realized that he had made a serious mistake, but at the time, his trust in OpenAI made him ignore the potential risks.

After using the API, the scammers acted quickly and transferred all the assets in the user's wallet to the address FdiBGKS8noGHY2fppnDgcgCQts95Ww8HSLUvWbzv1NhX in just 30 minutes. At first, the user did not fully confirm that there was a problem with the website, but after carefully checking the homepage of the domain, obvious suspicious signs were found.

Currently, the user calls on the community to help block the @solana website and remove related information from the @OpenAI platform to prevent more people from being victimized. He also hopes to bring the scammer to justice by investigating the clues left by the other party.

Scam Sniffer investigations uncovered a malicious code repository whose purpose was to steal private keys through AI-generated code.

• solanaapisdev/moonshot-trading-bot

• solanapaisdev/pumpfun-api

Github user "solanaapisdev" has created multiple code repositories in the past 4 months in an attempt to guide AI to generate malicious code.

The reason why this user's private key was stolen was that his private key was directly sent to the phishing website in the HTTP request body.

Yu Xian, the founder of SlowMist, said, "These are all very unsafe practices, and they are all poisonous. Not only do they upload private keys, they also help users generate private keys online for them to use. The documentation is also written in a pretentious way."

He also said that the contact information of these malicious code websites is very simple, and the official website has no content, mainly documents + code warehouse. "The domain name was registered at the end of September, which makes people think that it was a premeditated poisoning, but there is no evidence to show whether it was intentional to poison GPT or GPT actively collected it."

Scam Sniffer provides security recommendations for code creation using AI assistance, including:

• Don’t blindly use AI-generated code

• Always review the code carefully

• Keep private keys in an offline environment

• Use only trusted sources

「Original link」