The People's Procuratorate of Xuhui District, Shanghai charged that from February 9 to 20, 2023, Hong, together with Yang and Zhang (both handled separately), obtained the permissions of the target virtual currency website by analyzing and exploiting the Yapi remote code execution vulnerability, and then controlled the intranet server by means of lateral penetration into the intranet, implantation of Trojans, etc. After finding the source code of the server, downloaded and analyzed the virtual wallet address and private key of the victim Su, and constructed false instructions to transfer the virtual currency in the victim's virtual wallet address. Later, it was exchanged for other virtual currencies and sold, obtaining a total of more than 2.5 million yuan in illegal income. Hong refused to confess at the beginning of the case after being notified by the public security organ by phone, and then basically confessed the above criminal facts truthfully. Zheng confessed after being notified by the public security organ by phone. Hong and Zheng have refunded 962,790 yuan and 70,000 yuan respectively. The court sentenced Liu to three years in prison, suspended for three years, and fined 50,000 yuan. (The probation period is calculated from the date of the judgment. The fine has been paid.)