Location: Home » Electrum » Article

electrum wallet security, electrum allet

2022-04-29 10:36  Category : Electrum  

Wallet, Coldlar, Electrum, Huobi.

A new repo qtum-electrum-new was built to add qtum-related features to the latest code for Bitcoin electrum.

It turns out that the FTP account password used to upload local user information, with a normal Electrum Installer file, is used once the user installs it, and sensitive information entered under Electrum is sent to a remote malicious FTP server for reception.

Bitcoin wallet service Company Electrum was hacked, resulting in the loss of user funds. In response to the attack, Beosin Chengdu Chain Security analyzed that the wallet Electrum was attacked, mainly because the kivy framework used is using a standard py compiler and the wallet is not protected against secondary packaging, the core file can be directly recompiled back to the py file. Attackers can imitate the code, directly join the code to steal the user's password, key after the secondary packaging, and then cooperate with other attacks, tempt users to install the wallet implanted with malicious code, thereby stealing the user's password, key and other sensitive information.

In a forum post on Bitcointalk, website administrator Theymos explained: "If at any time in the past you've logged in to Electrum without a wallet password and opened a web page, your wallet might have been stolen." Particularly paranoid people may want to send all bitcoins (BTCs) from their old Electrum wallets to the newly generated Electrum wallet. "

After the giant whale zhoufujian was stolen by hackers worth 260 million yuan in encrypted assets, SlowMist Technology founder Yu Xian said that the security of some wallets is untrustworthy, such as IOTA's Trinity wallet, BTC's Electrum wallet, and support for BTC/BCH CoPay wallet, Blockchain/.info online wallet, MyEtherWallet online wallet, etc.

You can add multiple outputs using between Electrum and Copay wallets.

electrum wallet security

Bitcoin Wallet Electrum releases Selectrum 4.0 beta support for the Lightning Network.

Electron Cash is only a version of Electrum, so if you're used to Electrum, you won't have any problems.

Users of Bitcoin wallet Electrum are currently facing phishing attacks, according to Johnwick.io, a security lab. Hackers broadcast messages to the Electrum client through a malicious server, prompting the user to update to v4.0.0, and if the user follows the prompt to install this "backdoor-carrying client", the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips.

The main reason for the Trezor vulnerability is that it does not have built-in multi-signature functionality, so its multi-signature implementation is to support Electrum extension. This led to an attack on electrum, and Trezor was affected.

Electrum.

According to the dimensionality reduction security laboratory (johnwick.io), hackers launched a denial of service (DoS) attack on the well-known wallet Electrum server. The hackers used a botnet of more than 140,000 computers to attack Electrum nodes and deployed malicious nodes at the same time . When users connect to these malicious nodes and use the old version of Electrum to send transactions

At this time, the SPV-based Electrum wallet became the new favorite of Bitcoin players. Especially for small partners who are new to Bitcoin, editors recommend using electrum wallets.

Bitcoin desktop wallet client Electrum has released a 4.0 beta version, adding several important updates, including support for the Lightning network, nearly a year after the previous version of Electrum, 3.3.8 (last July). In the 4.0 beta version, Electrum mainly added features such as PSBT (partially signed Bitcoin transactions), Lightning Network, watchtowers (暸 watchtowers) and Submarineswaps (subliminal switching). (Github)

Original title: Slow Fog: Analysis of Pseudo Electrum Harpoon Fishing Attacks

When Electrum wallets are synchronized with malicious servers, they are instructed to "update" clients provided by hackers, resulting in the loss of assets contained in older versions. Previously, in December 2018, Electrum.

Synchronize Electrum official security upgrade

The Bitcoin desktop wallet client Electrum has released a beta version 4.0, which adds support for several important updates such as the Lightning Network. This version is nearly a year away from the previous version of Electrum 3.3.8 (July last year)

Johnwick.io found that hackers launched a denial-of-service (DoS) attack on a well-known wallet, Electrum server. Hackers used a botnet of more than 140,000 computers to attack Electrum's nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the Backdoor Client. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. Devi Security Labs recommends that users of Electrum Wallet update to the latest version of the client via the official website and never use the link in the prompt message.

At this time, the SPV-based Electrum wallet became the new favorite of Bitcoin players. Especially for small partners who are new to Bitcoin, editors recommend using electrum wallets.

Shunto touch melon, open the github of the electrum, we find the following code in the electrum/electrum/ecc.py.

iOS Wallet Electron (not Electrum!) QT (using the new code base)

Article Tags: electrum wallet security  

<< Prev Article Next Article >>

Electrum | Private Key | Transfer Coin | Receive Coin | Mine Free Coin | Crypto Coin | Transaction | Download

Copyright www.electrumlightning.org All Rights Reserved.