The Electrum development team also warned them that they had nothing to do with a project called Electrum Dark: they used our name without our permission. Be careful with the altcoin version of Electrum, as they are sometimes used as vectors to install malware against your real Bitcoin wallet.
As of press time, phishing attacks that forged Electrum upgrade notifications have stolen at least 1,450 BTC (the number stolen is officially counted by a user, anti-malware companies Malwarebytes and Electrum), with a total value of approximately $11.6 million. It is worth mentioning that Electrum versions lower than 3.3.4 are vulnerable to such phishing attacks. Users who use Electrum wallets should update to the latest version Electrum 3.3.8 through the official website (electrum.org). At present, v4.0.0 has not been officially released. Version, please do not use the link in the prompt message to update, so as to avoid loss of assets
In a recent announcement on Twitter, Electrum advised users to disable the automatic connection option and manually select a server, while the company is developing a more powerful Electrum.
In fact, there is a limit to the size of messages you can sign, because the actual scenario will run on a limited-length string of bits. There is an easy way to solve this limitation: sign the hash of the message, not the message itself. If we use an encrypted hash function with 256-bit output, we can effectively sign messages of any length as long as our signature scheme can sign 256-bit messages. As mentioned earlier, because the hash function is conflict-resistant, it is safe to use the hash of the message as a message digest in this manner.
Electrum is a popular software wallet that works by connecting to a dedicated server. These servers receive a hash of the Bitcoin address in the wallet and reply with transaction information. Electrum Wallet is fast and has few resources, but by default, it connects to these servers and can easily monitor users. In addition to Electrum, some other software uses public Electrum servers. By 2019, it is a faster and better alternative to BIP37.
A new repo qtum-electrum-new has been built to add qtum-related features to the latest code for Bitcoin electrum.
Shunto touch melon, open the github of the electrum, we find the following code in the electrum/electrum/ecc.py.
Vulnerabilities were found in Electrum and Electrum-LTC. It has been fixed in Electrum-LTC 18.104.22.168. If you are running an earlier version, update your software.
Scan the QR-Code to get directions to the venue.
Click Next." "Your Electrum Bitcoin wallet is now available!"