All About Lightning Electrum
Users of Bitcoin wallet Electrum are currently facing phishing attacks, according to the Devi Security Lab. Hackers broadcast messages to electrum clients through a malicious server, prompting the user to update to v4.0.0, and if the user is prompted to install this backdoor-carrying client, the private key is stolen and all digital assets are stolen. As of 13:00, at least 1450 BTCs worth approximately $11.6 million had been stolen from phishing attacks that forged Electrum upgrade tips. Devi Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum3.3.8 via the official website (electrum.org), which has not yet been officially released v4.0.0, and do not use the link in the prompt message to avoid asset losses.
By default, electrum wallets are randomly connected to a set of Electrum servers. From a privacy perspective, this is not a good thing because it discloses your wallet address and balance to unknown third parties. And unfortunately, many public Electrum servers are run by individuals or groups of blockchain analytics companies or worse. Therefore, if you are using an Electrum wallet, it is generally recommended that you run your own Electrum server and then connect the wallet to that server.
When I started using my brain wallet, I wanted to use it this way: every time I received money on blockchain.info to check the account situation, need to pay someone else to transfer the private key to Armory, when used to delete the entire Amory wallet file, absolutely do not let the brain wallet private key on the network for a moment. This is reasonable, long-term brain wallet private key in the wallet file that is not called brain wallet.
Depending on how the private key is stored, i.e. whether the user has the private key, we can divide the wallet into a centralized wallet and a de-centric wallet.