Users of Bitcoin wallet Electrum are facing a phishing attack, according to the Devi Security Lab. Hackers broadcast messages to the Electrum client through a malicious server, prompting the user to update to v4.0.0, and if the user follows the prompt to install this "backdoor-carrying client", the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips. DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.
wallet electrum win32.trojan.wisdomeyes.16070401.9500.9807
In a forum post on Bitcointalk, website administrator Theymos explained: "If at any time in the past you've logged in to Electrum without a wallet password and opened a web page, your wallet might have been stolen." Particularly paranoid people may want to send all bitcoins (BTCs) from their old Electrum wallets to the newly generated Electrum wallet. "
Cryptocurrencies Wallet Electrum has lost nearly 250 bitcoins (approximately $914,000) as a result of the new phishing attack. Electrum has confirmed the authenticity of the attack. An attacker could induce a user to provide password information by creating a fake wallet.
More than a month later, a debate over w w werthing over w w werthing over w werthing about w werthing about wedding oversized colliders exploded around the world.
Daily Security News: Bitcoin Wallet Electrum has suffered a massive DDoS attack that has cost millions of dollars.
According to the slow fog zone, the Phishing attack by Electrum forged upgrade tips has stolen at least 200 BTCs, and this attack cannot be avoided by upgrading Electrum alone, requiring the entire ecological service to make corresponding changes (because Electrum is not a full node, and then on the transaction broadcast and the corresponding server has a message communication, the attacker can also deploy a malicious server)
JoinMarket can interact with a Bitcoin Core full node to get the history of your wallet in a private way. You can also choose how to use the Electrum server, but you do not encourage regular users to use it. There are also plans to replace the Electrum interface with one that uses client block filtering.
A step is usually skipped between the hardware wallet and the entire node: the Electrum wallet not only connects to the hardware wallet, but also provides a wide range of features. Of course, this is more important for a technician or if you want to be a technician. After you start the Electrum application, it takes a few seconds to finally open your wallet. Second, you feel like you're back in the program design of the last decade.
m/44'/60'/0'/x: Electrum, Ledger Chrome App.
Electrum is a world-renowned Bitcoin light wallet with a long history of multi-signature support and a very broad user base, many of which like to use Electrum as a cold wallet or multi-signature wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have "message defects" that allow an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more.