Hi there, As we and other have explained here each and every transaction from the app requires confirmation of your password before being sent (your private keys are kept encrypted at all times with the password, so even if the app wanted, it would not be able to decrypt the keys without the password).

Unauthorized transactions can only be made by a) someone who has access to your seed phrase, or b) someone with access to your device and knows your password. There is no other way. We occasionally receive news of users having their email accounts hacked, giving attackers access to their seed backup files kept on their email or other cloud service. Please review your seed backup security, try to remember if you ever entered your seed on any other wallet, website, form, notes tool, etc; or check if anyone could have accessed the app on your device and knows your password.

One thing which concerns us the most is the use of the VPN on a device you claim is "connected to the network once a month to update" and is only used for coinomi. This does not ring true with the evidence you posted here, it shows you have 300+ applications on your device which would suggest some daily use on this device. With this many apps it is becoming increasingly likely that one or more of those apps are possibly stealing data from your device or logging some of your activity. This coupled with the age of your device OS is a huge cause for concern.

We highly recommend you file a report with your local police/cyber crime unit so they can begin the task of reaching out to exchanges and centralised services in the hopes of blacklisting the funds for you whilst investigation takes place.

Kind regards.