ChainCatcher news, digital asset wallet TokenPocket issued a statement in response to the incident on February 14, where user assets were aggregated and stolen by hackers. Technical analysis revealed that affected users had downloaded a third-party mining software called "Bom," which exhibited malicious behavior by unauthorized access to users' photo albums and uploading data, leading to the leakage of users' mnemonic phrases or private keys.TokenPocket has collaborated with security teams such as SlowMist Technology and GoPlusSecurity, and reminds users to immediately stop using unverified third-party tools, and to avoid saving mnemonic phrases and private keys through screenshots, social platforms, cloud storage, and other methods.