Slow fog alert: Bitcoin wallet Electrum "updates phishing" currency theft continues.
RBF, an acronym for Replece-By-Fee, translates as a fee replacement, meaning that the same unb packaged transaction that was previously issued can be replaced by a higher fee. When a user sends a bitcoin transaction, but the fee is too low, the deal cannot be packaged by the miners, or they have to wait in line for a long time before the miners can pack. But at this point the Bitcoin recipient needs to get bitcoin as soon as possible, and the RBF feature allows the sender to send a higher-fee transaction to replace the previous one.
Bitcoin Core nodes have been well-supported over the past year: if new deals include more fees, they have replaced the "replace-by-fee" label. But for Bitcoin Core wallet users themselves, it's never easy to use.
Electron Cash is only a version of Electrum, so if you're used to Electrum, you won't have any problems.
In addition, small partners who have used Electrum wallets should be aware that with Thecret phrase generated by Electrum, we can recover bitcoin keys on any browser using the Bitcoin Wallet web tool. And Electrum is so secure that there is no evidence that the distributed attack prevention system designed by Dark Wallet will be due to Electrum.
The problem is that Ethereum now shares trading pools, such as some contract users, which create congestion and bring up fees across the Ethereum network. In theory, the user on the contract is willing to pay a high fee to complete the transaction, but other dApp users have no reason to pay the transaction fee, so for Ethereum users, there is uncertainty about the transaction, do not know how much the next fee will be.
Hackers launched a denial-of-service (DoS) attack on a well-known wallet Electrum server, according to Johnwick.io. Hackers used botnets of more than 140,000 computers to attack Electrum nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the Backdoor Client. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. De-dimensional Security Labs recommends that users of electrum wallets be updated to the latest version of the client through the official website and never use the link in the prompt message.
The main reason for the Trezor vulnerability is that it does not have built-in multi-signature functionality, so its multi-signature implementation is to support Electrum extensions. This leads to an attack on Electrum, and Trezor is affected.
The Electrum team has announced the attack in an official tweet, saying that "this is an ongoing phishing attack on Electrum users" and reminding users to check the authenticity of the client's source before logging in. The team published its official website, and electrum clients downloaded elsewhere may be problematic.
Users of Bitcoin wallet Electrum are facing phishing attacks, according to Johnwick.io. Hackers broadcast messages to electrum clients through a malicious server, prompting the user to update to v4.0.0, and if the user is prompted to install this backdoor-carrying client, the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth approximately $11.6 million had been stolen from phishing attacks that forged Electrum upgrade alerts. Devi Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum3.3.8 via the official website (electrum.org), which has not yet been officially released v4.0.0, and do not use the link in the prompt message to avoid asset losses.