The Electrum team has announced the attack in an official tweet, saying that "this is an ongoing phishing attack on Electrum users" and reminding them to check the authenticity of the client's source before logging in. The team published its official website, and the Electrum clients downloaded elsewhere may be problematic.
According to Bleeping Computer, the BTC wallet app Electrom accused a phishing product called Electrum Pro of stealing a user's seed key on May 9 on GitHub and registering a domain name called electrum without Electrum's permission. The Electrum team noted that there was a piece of code indicating that the counterfeit product might have taken the user's seed key and uploaded it to the electrum. Affected users should transfer funds from BTC URLs managed by Eletrum Pro.
Researchers at the popular Bitcoin wallet app Electrum have uncovered a malicious shanzhai act aimed at stealing seed keys. The suspicious shanzhai wallet, called Electrum Pro, appeared online in March and has been labeled malware since.
Note: Electrum-XZC is derived from Electrum and uses different seed phrase criteria, so it cannot be imported.
Sound . . . Slow Fog Zone: Electrum fakes upgrade tips for phishing attack theft of at least 200 BTCs.
Ripple's Spring says the Xumm website may display a QR code that developers can easily scan using the Xumm application, or display a QR code display button if they are notified that it has been forwarded to their device.
January 19 (Xinhua) -- Electrum is a world-renowned Bitcoin light wallet with a long history of supporting multi-signatures and a very broad user base, many of which like to use Electrum as a cold wallet or multi-signature wallet for Bitcoin or even USDT (Omni), according to the Slow Fog Security team. Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have "message defects" that allow an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more.
Supports stealing BitcoinGold, electrumG, btcprivate (electrum-btcp), bitcore, Exodus.
Several wallets - like Coinomi, Electrum and Wasabi - moved straight to this.
When Electrum wallets are synchronized with malicious servers, they are instructed to "update" clients provided by hackers, resulting in the loss of assets contained in older versions. Previously, in December 2018, Electrum.