Electrum is a world-renowned Bitcoin light wallet with a long history of multi-signature support and a very broad user base, many of which like to use Electrum as a cold wallet or multi-signature wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have "message defects" that allow an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more. This captured currency theft attack is not stealing the private key (electrum's private key is generally stored with two-factor encryption), but replaces the transfer destination address when the user initiates the transfer. Here we remind users that when transferring money, special attention needs to be paid to whether the destination address has been replaced, which is a very popular method of currency theft recently. It is also recommended that users use hardware wallets such as Ledger, and if you pair it with Electrum, although the private key does not have any security issues, you should also be alert to the replacement of the destination address.
Sad about how to save the private key, more backups of the private key "We should create better wallet technology to simplify security"
At this point you will see your WIFI private key, please keep the private key in a safe place. The private key is the only proof of ownership of your asset. With a private key, you can unlock your wallet directly even without a password. Once the private key is lost, no one, including the team, can retrieve it again, and the assets in the wallet will never be in circulation. Protect your private key as carefully as you treat physical assets.
From this private key, export the child private key (see BIP32), where the node layout is set by BIP44.
The electrum and Electrum-LTC versions below 3.3.3 are vulnerable to phishing attacks in which a malicious server displays a message asking the user to download the fake Electrum. To prevent user exposure, versions older than 3.3 can no longer connect to public servers and must be upgraded. Do not download software updates from sources other than electrum.org and electrum-ltc.org.
Neutral third-party advisers are particularly important in GP-led fund restructuring transactions. There are a number of conflicts of interest in the GP-led transaction process, from asset evaluation to pricing and approval by LPAC (Limited Partners Advisory Committee/Limited Partners Advisory Committee), which is a very complex process. GP-led trading has more links to be approved and a more complex trading structure than LP second-hand share trading. In the process, the GP hires a third-party consultant who has worked closely with the LP to show that the GP takes the benefits of the LP very seriously, which helps to reduce friction in the transaction and is an added value to the GP.
Cybersecurity experts also recommend adding BIP39 cryptocurrencies through the KeepKey client extension. The cryptocurrencies phrase is a bit inconvenient to use, but it is not stored on the device and is therefore less vulnerable to attack. The researchers point out.
To avoid copying errors, you can install the Bitcoin Core client on a computer that remains offline, or electrum Light Wallet, import the private key above to check that the resulting Bitcoin address is consistent.
In January, users of cryptocurrencies Wallet Electrum and MyEtherWallet reported that they were facing phishing attacks that tricked individual accounts and password information. One user on Reddit found that the malicious scams were disguised as tips for security system updates to lure users to click.
At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips. DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.