Coin has confirmed exposure to the SparkKitty virus via a third-party SDK from Bitdu exchange but assured users that no data was compromised. The Coin team stated that although the SDK contained high-risk functions related to album permissions and picture uploads, these were never activated. Coin discovered the suspicious behavior during a test and blocked the upload function to prevent any potential risk. The company is conducting a full code security review and plans to enhance its third-party SDK review and partner investigation processes to avoid future incidents.