According to PANews, the GitHub open-source repository t3rn-swap was found to contain backdoor code, where users' input private keys are quietly sent via Telegram to a specified ID. This backdoor is located in the record_config function. The project author @hao3313076 responded by saying "he was also stolen from," but the comment was mocked by the community as "too honest." The community is calling for the immediate cessation of using this script and for changing the related private keys.

PANews reported on May 8 that according to X user @Xuegaogx, the GitHub open source library t3rn-swap was found to contain backdoor code, and the private key entered by the user will be silently sent to the specified ID via Telegram. The key backdoor is located in the record_config function. The project author @hao3313076 responded that "he was also stolen", but the comment content was ridiculed as "too honest", and the community called for an immediate cessation of the use of the script and replacement of the relevant private keys.

The GitHub open-source repository t3rn-swap was exposed to contain a private key backdoor. The author responded by saying "He was also hacked."