Bitcoin wallet Electrum released 4.0 beta, new support for Lightning Network and other updates
This isn't the first time Thatectrum has appeared in a fake version, with hackers developing a fake encrypted wallet, Electrum, in December, resulting in the theft of nearly 250 bitcoins worth about $1 million. In January, GitHub discovered a fake Electrum wallet called "Electrvm" designed to steal users' money. In February, users of encrypted wallets Electrum and MyEtherWallet reported that they were facing phishing attacks.
Users of Bitcoin wallet Electrum are facing a phishing attack, according to the Devi Security Lab. Hackers broadcast messages to the Electrum client through a malicious server, prompting the user to update to v4.0.0, and if the user follows the prompt to install this "backdoor-carrying client", the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips. DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.
By default, electrum wallets are randomly connected to a set of Electrum servers. From a privacy perspective, this is not a good thing because it discloses your wallet address and balance to unknown third parties. And unfortunately, many public Electrum servers are run by individuals or groups of blockchain analytics companies or worse. Therefore, if you are using an Electrum wallet, it is generally recommended that you run your own Electrum server and then connect the wallet to that server.
If someone's Electrum wallet is connected to one of these servers and tries to send a BTC transaction, they will see an official message telling them to update their Electrum wallet, as well as a scam URL.
A new version of Electrum Wallet v0.18.16 was released.
Electrum LTC wallet.
De-dimensional security: Bitcoin wallet Electrum was hacked and at least 1,450 BTCs were stolen.
Use BitHD shields and blades to prevent Electrum wallet "message defects" attacks.
electrum wallet vs vertcoin wallet
The latest version of UBTC Electrum Light Wallet V3.3.1 is available for download.
When an Electrum wallet queries a third-party Electrum server, the server can link two transactions together and know which address is a zero address.
(nonce, receiving_address, value, dataitem0, dataitem1... Dataitemn, v,r,s?nonce is the number of transactions that the address has sent, encoded in binary format (e.g., 0 -'', 7 'x07', 1000 -'x03'xd8'). (v,r,s) is a newly generated Electrum-style transaction signature without the private key corresponding to the sending address, and the range of v is 27 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . The public key and address can be extracted directly from an Electrum-style signature (65 bytes). The conditions under which the transaction is legal.
Electrum Wallet Bitcoin.
Like Bitcoin's core wallet, Electrum Wallet allows users to control their own funds and private keys. Electrum wallets' private keys can also be exported and used on other supported wallets to access funds. Electrum apps are available for Windows, Linux, OSX and Android, but do not support iOS and browser clients.
Electrum wallet suffered a large-scale DoS attack, which has caused millions of dollars in losses
The fact that not many people know is that Esplora is bundled with a based and optimized Electrum server. This Electrum server is derived from Electrs and is now maintained separately by the Blockstream engineering team. Over the past two years, Esplora has become one of the fastest and most scalable Electrum server solutions available for Bitcoin due to continuous updates and performance optimization. Esplora is also the only Electrum server that supports liquid networks.
The Electrum team has announced the attack in an official tweet, saying that "this is an ongoing phishing attack on Electrum users" and reminding them to check the authenticity of the client's source before logging in. The team published its official website, and the Electrum clients downloaded elsewhere may be problematic.
Reddit user u/normal_rc: 'The attacker set up a lot of malicious servers. Once a user's Electrum wallet is connected to these servers, they see what appears to be an official message when sending bitcoin transactions, telling them to upgrade the Electrum wallet, which actually contains a fraudulent URL.