So far, the fake DNS server we've built is tricking your smartphone into sending TCP data to your laptop, and next we'll build the actual TCP proxy server and run it on your laptop. It works by listening to the data sent by your phone and forwarding it to the actual remote server. Finally, forward all responses from the server back to your phone. In other words, acting as a proxy.
run your own electrum server
Wallets that are widely used include Bitcoin Electrum, Ether Wallet, imtoken and Jaxx. The Privat Key for this type of wallet is in the user's own hands, more secure and easy to use. The limitation is that after the transaction signature is completed, the transaction is broadcast out or depends on the central node server, when the volume of business is large, the server performance overload, may cause the transaction can not be successfully sent.
According to The Next Web, the attackers even implemented their own Electrum servers, which hosted the attacked Electrum.
Dash Electrum 22.214.171.124 was released, renamed Dash-Electrum, adding the option to use Tor Proxy at startup, according to Dash Coin. DASH is now trading at $159, down 3.26 percent.
He later updated his post, adding: "If you don't set your wallet password, theft is trivial." If your wallet password is set well, the attacker seems to be able to get address transaction information only from your wallet and change your Electrum settings, which seem to have a high level of further utilization for me. So if you set your wallet password, you can reduce your panic, but you should still take this seriously. "
On December 27, Reddit user u/normal_rc reported that Electrum's wallet had been hacked and that nearly 250 bitcoins (243.6 BTCs, nearly $1 million) had been maliciously stolen, coinelegraph reported. Electrum then confirmed that the attack included creating a fake version of the wallet to trick users into providing password information. Electrum responded on Twitter that "this is a persistent phishing attack on Electrum users" and warned users not to download Electrum from any source other than the official website.
Electrum users are reminded of the Update Tip, which indicates that the new version of Electrum is likely to be fake, and if installed, transfer Bitcoin out in another security environment in a timely manner.
You can use Security Seeds to recover your wallet on any Electrum client, even on the Electrum Wallet online web program.
Keystore anti-theft strategy: Because Keystore is the private key after it is encrypted and generally exists as a JSON file, the strategy of "copying" is clearly unscientciable and can be stored in a USB stick or in a password management tool. Store Keystore separately from the password, so that as long as the password strength is high enough, even if the hacker stole Keystore, it is difficult to crack, backup Keystore also need to be stored in multiple places, such as you only exist in the USB stick, if the USB stick is lost, then it is equivalent to losing the wallet.