Electrum is a popular software wallet that works by connecting to a dedicated server. These servers receive a hash of the Bitcoin address in the wallet and reply with transaction information. Electrum Wallet is fast and has few resources, but by default, it connects to these servers and can easily monitor users. In addition to Electrum, some other software uses public Electrum servers. By 2019, it is a faster and better alternative to BIP37.
B: Electrum server can customize messages to appear in the user's electrum light wallet software, giving hackers a chance to broadcast phishing messages.
Johnwick.io found that hackers launched a denial-of-service (DoS) attack on a well-known wallet, Electrum server. Hackers used a botnet of more than 140,000 computers to attack Electrum's nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the Backdoor Client. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. Devi Security Labs recommends that users of Electrum Wallet update to the latest version of the client via the official website and never use the link in the prompt message.
Use BitHD shields and knives to prevent "message defects" attacks on Electrum wallets.
Although at the end of the 18th slow fog alerted the Electrum wallet client's message defects, forcing an "update prompt" to pop up when the user's currency transfer operation, inducing the user to update the download malware, and then carry out currency theft attacks.
According to security firm Slow Fog, the current latest version of Bitcoin Light Wallet Electrum is 3.3.8, while previous versions of 3.3.4 are known to have "message defects" that allow attackers to send "update prompts" over a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. User feedback because of this attack, stolen bitcoins in more than four digits.
By default, electrum wallets are randomly connected to a set of Electrum servers. From a privacy perspective, this is not a good thing because it discloses your wallet address and balance to unknown third parties. And unfortunately, many public Electrum servers are run by individuals or groups of blockchain analytics companies or worse. Therefore, if you are using an Electrum wallet, it is generally recommended that you run your own Electrum server and then connect the wallet to that server.
Electron Cash is only a version of Electrum, so if you're used to Electrum, you won't have any problems.
Lightning support in Electrum has been around for a long time. Thomas Voegtlin, the founder of Electrum, first told CoinDesk last summer that Lightning would take it to the next version.
Electrum LTC Wallet review.
Qtum Electrum is a Qtum desktop light wallet modified from the well-known Bitcoin wallet Electrum. Compared to the current Qtum Core full-node wallet, Qtum Electrum takes up less disk space and takes less time to synchronize chunks, supports multi-signature and hardware wallets, supports cold wallet mode, supports the import of mnomes into mobile wallets, and uses SPV authentication to ensure security.
Electrum posted a message about the incident on Twitter today, claiming that "there are currently phishing attacks against Electrum users" and imploring users to check the validity of their login information.
electrum wallet send message
If someone's Electrum wallet is connected to one of these servers and tries to send a BTC transaction, they will see an official message telling them to update their Electrum wallet, as well as a scam URL.
Qtum Electrum synchronously updates electrum-related code.