11/07
2020

electrum bloom filter, Native Iron Cluster

However, to spend the funds received in your portfolio, you need access to the private key, which we do not store in BTCPay. This requires users to use an external portfolio, and due to some limitations (restrictions, trusted third parties, lack of xpub export support, etc.) on almost all portfolios on the market, most users choose to use the solution to invest in Electrum and filter sensitive financial information to the server.

Read All

10/19
2020

electrum bloom filter, Counting Bloom Filter

Bloom Filters allows the reality SPV (simplified payment confirmation) client to simply download the chain fast title without having to store all transactions in the chain block locally. For example, a client can query the address of a node to retrieve all relevant transaction data and verify the block of information by the title information of the chain block. Several security vulnerabilities were identified in 0.8.0, and the operation of Bloom Filter will allow an attacker to carry out a denial-of-service attack. When a node is overwhelmed by disk read/write capabilities, causing them to synchronize behind several chunks, someone sends information through the client causing an outage.

Read All

03/10
2021

electrum dash server list, Overview of the Dashboard in Windows Server Essentials

This "update tip" is not an official act of Electrum, but a phishing attack by an attacker that exploits a message flaw on the Electrum client and the ElectrumX server, which requires the attacker to deploy the malicious ElectrumX server in advance, and the malicious server is localized by the user's Electrum client (because the Electrum client is a light wallet and the user needs the ElectrumX server to broadcast the transaction). In a frenzy, malicious ElectrumX servers account for as many as 71% of the total, and the show doesn't fully count, and hundreds of bitcoins have been stolen in this phishing attack over the past year or so.

Read All

03/10
2021

setup electrum tor, tor electrum setup

Users of Bitcoin wallet Electrum are facing phishing attacks, according to Johnwick.io. Hackers broadcast messages to the Electrum client through a malicious server, prompting the user to update to v4.0.0, and if the user follows the prompt to install this "backdoor-carrying client", the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips. DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.

Read All