Recently, the cryptocurrency wallet service provider Tangem fixed a significant security vulnerability in its mobile application that had inadvertently collected some users' private keys via email. Previously, Reddit users had raised concerns, pointing out that Tangem exposed users' private keys to email accounts and its employees, threatening the safety of investors' funds. Some users indicated that Tangem had not provided an appropriate response to the issue, and users' private keys could have been retained in multiple email histories and ticket tracking systems, posing a security threat to all Tangem users. On December 30, Tangem acknowledged the problem and explained that it was a bug in the mobile application log handling, which has now been resolved. When creating a wallet using a mnemonic phrase, the private key was incorrectly logged in the application logs, which could be accessed during interactions with the support team. On the same day, Tangem released an application update, but the official website did not mention specific details. Tangem also confirmed that it has permanently deleted all logs and attachments sent to the support team, ensuring no data remnants. Although Tangem stated that the vulnerability only affected a small number of users, some members of the crypto community expressed dissatisfaction with its low-key handling. As of December 31, Tangem had not issued any related announcements on social media. To prevent potential private key leakage risks, all Tangem users are advised to update their mobile applications immediately. (Cointelegraph)