🐛 Coinomi Wallet sends your plain text seed phrase to Googles remote spellchecker API
Messari
Feb 27, 2019 ⋅ 1 min read
According to Twitter users @warith2020 and @lukechilds, Coinomi Wallet has a security vulnerability that sends the wallet's plain text seed phrase to Google's spellchecker API when opening your wallet. Full analysis and demonstration of the security vulnerability are available on Avoid Coinomi.
Let us know what you loved about the report, what may be missing, or share any other feedback by filling out this short form. All responses are subject to our Privacy Policy and Terms of Service.
Upgrade to Messari Pro
Gain an edge over the market with professional grade tools, data and research.
Already a member? Sign in
Upgrade to Messari Pro
Gain an edge over the market with professional grade tools, data and research.
Already a member? Sign in