04/24
2022

electrum 3.3.2 not connecting to server, electrum 3.2.1. still not connecting to servers

In December 2018, for the first time, we discovered and alerted an attacker to a messaging flaw that exploited the Electrum Wallet client to force an "update prompt" to pop up when a user transfers money, inducing the user to update the download malware and then carry out a currency theft attack. This "update tip" is not an official act of Electrum, but a phishing attack by an attacker that exploits a message flaw on the Electrum client and the ElectrumX server, which requires the attacker to deploy the malicious ElectrumX server in advance, and the malicious server is localized by the user's Electrum client (because the Electrum client is a light wallet and the user needs the ElectrumX server to broadcast the transaction). At the time of the madness, malicious ElectrumX servers accounted for as many as 71% of the total, and the show doesn't fully count that hundreds of bitcoins have been stolen in this phishing attack over the past year or so. Although in early 2019 Electrum officials said they would adopt some security mechanisms to prevent this kind of "update fishing", such as: 1. Patch Electrum client does not display rich text, does not allow arbitrary messages, only strict messages; Patch ElectrumX server implementation detects Sybil Attack (i.e. witch attacks, malicious servers that send phishing messages) and no longer broadcasts them to clients; Implement blacklisting logic to alert malicious servers outside the Electrum client view; Promote social networking sites, websites, and all forms of communication that exist with users, who should always run the latest version and always only install from official sources (electrum.org), access through security protocols (https), and verify GPG signatures in advance. However, many users of Electrum are still in the older version (less than 3.3.4), and the older version is still under threat. However, we do not rule out a similar threat to the new version. Recently, slow fog technology anti-money laundering (AML) system through continuous tracking found that one of the attackers wallet address bc1qcygs9dl4pqw6atc4yqurzd76p3r9cp6xp2kny has stolen more than 30 BTC, the crime lasted six months, and recently is still active. We would like to remind Electrum users that the new version of Electrum in this Update Tip is likely to be false and that if installed, transfer Bitcoin out in another security environment in a timely manner. At the same time, we call on the vast number of cryptocurrencies exchanges, wallets and other platforms of the AML wind control system black and monitor such as the above Bitcoin address. Finally, identify electrum's official web address.

Read All

10/07
2021

electrum 3.3.2 not connecting to server, What does message "Server is lagging (9 blocks)" mean in Electrum?

A botnet with more than 140,000 machines has launched a DoS attack on the server of Bitcoin wallet Electrum in an attempt to direct users to software versions designed to steal Bitcoin. Electrum users have been advised to take extra care when using the platform until the issue is resolved. Security researchers familiar with the matter say that if a user installs a fake version of Electrum, all funds contained in the old version will be lost immediately. (TNW)

Read All

11/03
2020

electrum wallet error sending, r electrum

Abstract: On December 27, commentators reported on social media that a malicious group hacking the cryptocurrency wallet Electrum had stolen nearly 250 bitcoins (about $937,000). The attack was later confirmed by Electrum, which created a fake version of the wallet to trick users into providing password information. "Hackers set up a bunch of malicious servers," Reddit user u/normal_r.

Read All