However, after electrum officials said in early 19th that some security mechanisms should be put in place to prevent this "update phishing", many users of Electrum are still in the old version.
Vulnerabilities were found in Electrum and Electrum-LTC. It has been fixed in Electrum-LTC 220.127.116.11. If you are running an earlier version, update your software.
Hackers launched a denial-of-service (DoS) attack on a well-known wallet Electrum server, according to The Devi Security Lab. Hackers used botnets of more than 140,000 computers to attack Electrum nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the client carrying the backdoor. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. De-dimensional Security Labs recommends that users of electrum wallets be updated to the latest version of the client through the official website and never use the link in the prompt message.
In August-September, Bitcoin wallet Electrum was hacked twice, and according to multiple sources, at least 1,450 BTCs worth $11.6 million were stolen from phishing attacks that faked Electrum upgrade tips.
When Electrum wallets are synchronized with malicious servers, they are instructed to "update" clients provided by hackers, resulting in the loss of assets contained in older versions. Previously, in December 2018, Electrum.
Electrum client. A veteran security research expert told Hard Fork that if a user installs the problem version of Electrum.
No downtime: Electrum Litecoin is not bound to a specific server;
Liu Run teacher's "three" imagination is over, our blockchain development direction is not consistent with the direction of fully connected business, I seem to see the "all-connected business" in the shadow of blockchain, let's review these three sentences.
The Electrum team has announced the attack in an official tweet, saying that "this is an ongoing phishing attack on Electrum users" and reminding them to check the authenticity of the client's source before logging in. The team published its official website, and the Electrum clients downloaded elsewhere may be problematic.
Although it is not clear at present, coin Anyun's passenger unit price, but coin security revealed that the charging model is the annual fee package plus fee sharing of the mixed model.