[SlowMist CISO Warning: Malicious Code in a Polymarket Copy-Trading Program Stealing Private Keys] SlowMist Technology Chief Information Security Officer 23pds shared a community user's tweet to issue a security warning. A developer of a Polymarket copy-trading bot program has hidden malicious code in the GitHub repository. When the program is launched, it automatically reads the user's '.env' file (containing wallet private keys), leading to fund theft. The program's author repeatedly modified and submitted code on GitHub multiple times to deliberately conceal the malicious package.