In December 2018, Slow Fog first discovered and alerted an attacker to a messaging flaw using the Electrum wallet client, forcing an "update prompt" to pop up during a user's currency transfer operation, inducing users to update and download malware to carry out a currency theft attack, according to Slow Fog. Although electrum officials said in early 2019 that some security mechanisms would be in place to prevent this "update phishing", many users of Electrum are still in the old version (less than 3.3.4) and the old version is still under threat. However, we do not rule out a similar threat to the new version.
electrum transfer pending
B: Electrum server can customize messages to appear in the user's electrum light wallet software, giving hackers a chance to broadcast phishing messages.
Creating a multi-signature wallet in Qtum Electrum is easy.
A new version of Electrum Wallet v0.18.16 was released.
Electrum is a software wallet. It provides more security than an online wallet, but less than a paper wallet or hardware wallet.
Electrum wallets have been hacked in recent days and nearly 250 bitcoins have been stolen, according to blockchain security team Devi Security Labs. This attack, confirmed by Electrum, involves creating a fake version of the wallet to trick users into providing password information. Electrum responded on Twitter that "this is an ongoing phishing attack on Electrum users and advised users to download wallet apps from the official website." Mars Finance reminds users not to install electrum wallets from unknown sources.
The electrum and Electrum-LTC versions below 3.3.3 are vulnerable to phishing attacks in which a malicious server displays a message asking the user to download the fake Electrum. To prevent user exposure, versions older than 3.3 can no longer connect to public servers and must be upgraded. Do not download software updates from sources other than electrum.org and electrum-ltc.org.
Electrum-LTC is a simple but powerful Litecoin wallet. Like its predecessor, the Electrum-Bitcoin wallet, the open source wallet is available on GitHub and anyone can view or upgrade the code.
The best approach is to use Electrum Personal Server, but this is an advanced option and is not without its own dangers.
In the last six months, Electrum wallet users have lost 771 BTCs to phishing attacks.