In December 2018, for the first time, we discovered and alerted an attacker to a messaging flaw that exploited the Electrum Wallet client to force an "update prompt" to pop up when a user transfers money, inducing the user to update the download malware and then carry out a currency theft attack. This "update tip" is not an official act of Electrum, but a phishing attack by an attacker that exploits a message flaw on the Electrum client and the ElectrumX server, which requires the attacker to deploy the malicious ElectrumX server in advance, and the malicious server is localized by the user's Electrum client (because the Electrum client is a light wallet and the user needs the ElectrumX server to broadcast the transaction). At the time of the madness, malicious ElectrumX servers accounted for as many as 71% of the total, and the show doesn't fully count that hundreds of bitcoins have been stolen in this phishing attack over the past year or so. Although in early 2019 Electrum officials said they would adopt some security mechanisms to prevent this kind of "update fishing", such as: 1. Patch Electrum client does not display rich text, does not allow arbitrary messages, only strict messages; Patch ElectrumX server implementation detects Sybil Attack (i.e. witch attacks, malicious servers that send phishing messages) and no longer broadcasts them to clients; Implement blacklisting logic to alert malicious servers outside the Electrum client view; Promote social networking sites, websites, and all forms of communication that exist with users, who should always run the latest version and always only install from official sources (electrum.org), access through security protocols (https), and verify GPG signatures in advance. However, many users of Electrum are still in the older version (less than 3.3.4), and the older version is still under threat. However, we do not rule out a similar threat to the new version. Recently, slow fog technology anti-money laundering (AML) system through continuous tracking found that one of the attackers wallet address bc1qcygs9dl4pqw6atc4yqurzd76p3r9cp6xp2kny has stolen more than 30 BTC, the crime lasted six months, and recently is still active. We would like to remind Electrum users that the new version of Electrum in this Update Tip is likely to be false and that if installed, transfer Bitcoin out in another security environment in a timely manner. At the same time, we call on the vast number of cryptocurrencies exchanges, wallets and other platforms of the AML wind control system black and monitor such as the above Bitcoin address. Finally, identify electrum's official web address.
Bitcoin Future： can i restore my electrum wallet and update the version at the same time
print("%d of %d" % (idx, total_frames))
Electrum wallets have been hacked in recent days and nearly 250 bitcoins have been stolen, according to blockchain security team Devi Security Labs. This attack, confirmed by Electrum, involves creating a fake version of the wallet to trick users into providing password information. Electrum responded on Twitter that "this is an ongoing phishing attack on Electrum users and advised users to download wallet apps from the official website." Mars Finance reminds users not to install electrum wallets from unknown sources.
Dynamic . . . Slow fog: Electrum "updates phishing" currency theft attack supplement alert.
At this time, the SPV-based Electrum wallet became the new favorite of Bitcoin players. Especially for small partners who are new to Bitcoin, editors recommend using electrum wallets.
Bitcoin wallet Electrum was hacked and at least 1,450 BTCs were stolen.
ZClassic (ZCL) has released a beta version of the ZCL Electrum wallet.
Attackers reportedly created their own Electrum servers, which hosted the attacked version of Electrum in order to implement the attack. When the user will be vulnerable.
Each Coinkite account is protected by HSM, indicating that the system cannot access the account. You can back up Electrum or Blockchain.info Wallet at the free Coinkite account. Coinkite is responsible for all transactions made in the Coinkite account.
If someone's Electrum wallet is connected to one of these servers and tries to send a BTC transaction, they will see an official message telling them to update their Electrum wallet, as well as a scam URL.
Electrum Wallet is one of the most popular Bitcoin wallets and has been around for several years. However, Electrum wallet users often rely on Electrum servers, which presents some security and privacy trade-offs. If you use electrum personal servers, Electrum wallet users can connect locally to their own private servers, enjoying the convenience of Electrum without any trade-offs.
There are several Litecoin wallets to choose from! Such a good wallet - Electrum Litecoin wallet! View exclusive reviews on Electrum.
Dynamic . . . Bitcoin wallet Electrum was hacked and at least 1,450 BTCs were stolen.
De-dimensional security: Bitcoin wallet Electrum was hacked and at least 1,450 BTCs were stolen.
In the new version of the wallet-related RPC interface, Forge will no longer support wallet management, while discarding wallet-related RPC interfaces: create_wallet, load_wallet, recover_wallet, list_wallet, remove_wallet, create_tx, multisig.