Odaily Planet Daily reports that cryptocurrency wallet service provider Tangem recently fixed a major security vulnerability in its mobile application, which had inadvertently resulted in the collection of some users' private keys via email. Previously, Reddit users raised concerns, pointing out that Tangem exposed users' private keys to email accounts and its employees, threatening the security of investors' funds. Some users noted that Tangem did not adequately respond to the issue, and that users' private keys could remain in multiple email histories and ticket tracking systems, posing a security threat to all Tangem users. On December 30, Tangem acknowledged the issue and explained that it was a bug in the mobile application log handling, which has now been resolved. When wallets were created using mnemonic phrases, private keys were incorrectly recorded in the application logs, which could be accessed during interactions with the support team. On the same day, Tangem released an application update, but the official website did not mention specific details. Tangem also confirmed that it has permanently deleted all logs and attachments sent to the support team to ensure no data residue remains. Although Tangem stated that the vulnerability only affected a small number of users, some members of the cryptocurrency community expressed dissatisfaction with its low-key handling. As of December 31, Tangem had not issued any related announcements on social media. To prevent potential private key leakage risks, all Tangem users are advised to update their mobile applications immediately. (Cointelegraph)