Electrum is a world-renowned Bitcoin light wallet with a long history of supporting multi-signatures and a very broad user base, many of which like to use Electrum as a cold wallet or multi-sign wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have a "message flaw" that allows an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing for the user, and if you follow the prompt to download the so-called new version of Electrum, you may get a trick. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more. This captured currency theft attack is not stealing the private key (electrum's private key is generally stored with two-factor encryption), but replaces the transfer destination address when the user initiates the transfer. Here we remind users that when transferring money, special attention needs to be paid to whether the destination address has been replaced, which is a very popular method of currency theft recently. It is also recommended that users use hardware wallets such as Ledger, if paired with Electrum, although the private key will not have any security issues, but also need to be alert to the target address is replaced.
Bitcoin Future： transfer from jaxx to electrum
So far, counterfeits have been found in wallets such as Ledger, Trezor, Jaxx, Electrum, MyEtherWallet, MetaMask, Exodus and KeepKey. The number of test cryptocurrencies sent by Denley has not yet been withdrawn, suggesting that hackers either have to manually empty their wallets or they are only interested in larger balances.
In December 2018, Slow Fog first discovered and alerted an attacker to a messaging flaw using the Electrum wallet client, forcing an "update prompt" to pop up during a user's currency transfer operation, inducing users to update and download malware to carry out a currency theft attack, according to Slow Fog. Although electrum officials said in early 2019 that some security mechanisms would be in place to prevent this "update phishing", many users of Electrum are still in the old version (less than 3.3.4) and the old version is still under threat. However, we do not rule out a similar threat to the new version.
According to Bleeping Computer, the Bitcoin wallet app Electrom was on GitHub on May 9th, accusing a phishing product called Electrum Pro of stealing a user's seed key and registering a domain name called electrum without Electrum's permission. The Electrum team noted that there was a piece of code indicating that the counterfeit product might have taken the user's seed key and uploaded it to the electrum. Affected users should transfer funds from Bitcoin URLs managed by Eletrum Pro.
Well-known Bitcoin wallet Electrum "update phishing" currency theft continues.
CoinJoin is a Bitcoin-based concept developed in 2013 by Bitcoin Core contributor Gregory Maxwell. Essentially, it's special in merging multiple transactions into a larger transaction, which, to be precise, confuses the sending address (input) and receiving address (output) of Bitcoin.
"Electrum DDoS botnet infects more than 152,000 hosts" - Jett.
Wallet, Coldlar, Electrum, Huobi.
The exchange said it was in response to wallet users who often told the company how much trouble it had to process long password addresses and worried about how much pressure it was to send money because the addresses had been copied incorrectly.
Dynamic . . . Hardware wallet Ledger Nano S supports EOS Dapps.
Electrum client. A veteran security research expert told Hard Fork that if a user installs the problem version of Electrum.
If someone's Electrum wallet is connected to one of these servers and tries to send a BTC transaction, they will see an official message telling them to update their Electrum wallet, as well as a scam URL.
According to Bleeping Computer, the BTC wallet app Electrom accused a phishing product called Electrum Pro of stealing a user's seed key on May 9 on GitHub and registering a domain name called electrum without Electrum's permission. The Electrum team noted that there was a piece of code indicating that the counterfeit product might have taken the user's seed key and uploaded it to the electrum. Affected users should transfer funds from BTC URLs managed by Eletrum Pro.
October 4 (Xinhua) -- Coinbase Pro announced an update to its transaction fee structure, which adds fee costs for small volume customers and lowers fees for customers with large volumes, with significantly reduced or remains the same for customers with monthly transaction volumes of more than $50,000.