rosecrypto.com
Thoughts on the Coinomi Spellcheck Vulnerability
The long story short is this: the desktop version of Coinomi had a glitch which inadvertently sent your recovery phrase to Google's spellcheck API. This was not intended behavior. Here's a rundown of the facts as we now know them...