Google researcher Tavis Ormandy discovered the Bitcoin wallet Electrum.
The Healthy Security Lab is concerned that Nearly 250 bitcoins have been stolen in a recent hacking attack on an Electrum wallet. This attack, confirmed by Electrum, involves creating a fake version of the wallet to trick users into providing password information. Electrum responded on Twitter that it was an ongoing phishing attack on Electrum users and advised them to download wallets from the official website.
Public Electrum server
Electrum is a world-renowned Bitcoin light wallet with a long history of multi-signature support and a very broad user base, many of which like to use Electrum as a cold wallet or multi-signature wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have "message defects" that allow an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more. This captured currency theft attack is not stealing the private key (electrum's private key is generally stored with two-factor encryption), but replaces the transfer destination address when the user initiates the transfer. Here we remind users that when transferring money, special attention needs to be paid to whether the destination address has been replaced, which is a very popular method of currency theft recently. It is also recommended that users use hardware wallets such as Ledger, and if you pair it with Electrum, although the private key does not have any security issues, you should also be alert to the replacement of the destination address.
Bitcoin desktop wallet client Electrum has released a 4.0 beta version, adding several important updates, including support for the Lightning network, nearly a year after the previous version of Electrum, 3.3.8 (last July). In the 4.0 beta version, Electrum mainly added features such as PSBT (partially signed Bitcoin transactions), Lightning Network, watchtowers (暸 watchtowers) and Submarineswaps (subliminal switching). (Github.
Download and upload by connecting to the server
Dear User: Hotbit has resumed ZCL withdrawals and wish you a pleasant transaction! Hotbit Team 2020.4.13.
The discoverdomain function can be run by sending backdoor commands or automatically. Discoverdomain first enumerations the electrum Bitcoin wallet server using a public list, and then tries to query history with a hard-coded hash.
Electrum Bitcoin Wallet is a reliable service that has been around since 2011. It is called a "thin" cold wallet, where the entire blockchain is not downloaded to the user's device but stored on a network server. In this case, the private key is stored encrypted on the user's computer and is never sent to the server.
I do the same thing as you do - back up, export private keys and try to import them into blockchain, bitcoinqt, electrum, armory, etc. But to no avail.
electrum zcl no connecting to server
You can use Security Seeds to recover your wallet on any Electrum client, even on the Electrum Wallet online web program.
As you can see from the website monitoring, Bitcoin's electrum server currently has only 210 nodes online.
Or I can perform a program like curl or wget that displays the real IP address of the Web server, allowing me to bypass WAF by connecting directly to the destination.
According to slow fog zone news, Electrum fake upgrade tips of the phishing attack has stolen at least 200 BTC, this attack by upgrading Electrum alone can not be avoided, the need for the entire ecological service to make corresponding changes (because Electrum this client is not a full node, and then on the transaction broadcast and the corresponding service side of the message communication, attackers can also deploy malicious server). Slow fog zones remind users that phishing attacks like Electrum require long-term vigilance. The slow fog zone has previously issued an alert for selectrum phishing updates, and hackers who attacked Electrum wallets used Electrum's software to unusually construct malicious software update prompts to induce users to update and download malware usage.
A new repo qtum-electrum-new was built to add qtum-related features to the latest code for Bitcoin electrum.
Bitcoin Wallet Electrum Wallet was hacked and lost 1,450 BTCs.
Connecting the keyboard display to locate server failures - This process is time-consuming and easily misses targets, as server troubleshooting results in large losses have occurred many times.
The fact that not many people know is that Esplora is bundled with a based and optimized Electrum server. This Electrum server is derived from Electrs and is now maintained separately by the Blockstream engineering team. Over the past two years, Esplora has become one of the fastest and most scalable Electrum server solutions available for Bitcoin due to continuous updates and performance optimization. Esplora is also the only Electrum server that supports liquid networks.
Electrum LTC Wallet is a desktop-based cryptocurrencies wallet that supports Litecoin. Here are some aspects of wallets: Like its predecessor, Electrum- Bitcoin Wallet, open source wallets can be found on GitHub, where anyone can view or upgrade codes.
Electrum can be used for Windows, Mac and Linux, as well as Android. Electrums was originally created in 2011 compared to other software wallets, and one of the biggest advantages is that its server indexes the blockchain instead of downloading the entire Bitcoin blockchain, which makes downloads faster and less downloadable. Electrum also provides many protections for your Bitcoin, including cold storage, allowing you to store Bitcoin offline, and restoring the "seeds" of Bitcoin in the event of a failure (hackers, computer corruption, etc.)
Communication, no loss of connecting.
Index servers are mostly difficult to install and run in a production environment, such as Insight servers that need to reset APIs for certain types of data, followed by WebSockets and socket.io. In addition, the electrum server uses stratum.
Index servers are mostly difficult to install and run in production environments, such as Insight servers that need to reset APIs for certain types of data, followed by WebSockets and socket.io. In addition, the Stratum API used by the Electrum server is too cumbersome and cumbersome.
Popular Bitcoin wallet Electrum announced on the 8th, the server was a denial of service (DoS) attack, is studying the introduction of a more powerful version of the service network, affected users can not automatically connect, will manually choose to connect to the server.
However, all-node products offer more than just "bitcoin cores in the box." Most of them run Lightning clients, and even include BTCPay Server for merchant solutions, Samourai Whirlpool for untrusted CoinJoins, or Electrum Personal Server for greater sovereignty. In both cases (Shift Cryptosecurity's BitBoxBase and HTC's Exodus 1s), each contains a hardware wallet chip to improve the security of the entire node.
ZClassic (ZCL) Menetnet will be officially released on September 6 and the test network will end at the end of August.
The weakness of the wallet app, the Electrum wallet network can join the server, which can apply pop-up warning messages to the wallet. The attack began on December 21 at GitHub.
Wallet history is available from a central server, such as an Electrum server, but uses a new Tor for each address.