DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.
Google researcher Tavis Ormandy discovered the Bitcoin wallet Electrum.
According to Bleeping Computer, the BTC wallet app Electrom accused a phishing product called Electrum Pro of stealing a user's seed key on May 9 on GitHub and registering a domain name called electrum without Electrum's permission. The Electrum team noted that there was a piece of code indicating that the counterfeit product might have taken the user's seed key and uploaded it to the electrum. Affected users should transfer funds from BTC URLs managed by Eletrum Pro.
According to Johnwick.io, we will continue to monitor and track further movement of funds after a recent user submitted a coin-losing incident claiming that the download used electrum wallets had been phishing attacks, losing more than 700 bitcoins, and that the stolen address had been added to the Devi AML system. It is reported that malicious website (electrumsecure) fake Electrum website phishing attacks, to guide users to download the wallet, in order to steal the user's private key and other sensitive data. De-dimensional Security Labs hereby reminds users not to install electrum wallets from unknown sources at will to avoid asset losses. Electrum Official Website: electrum.orgElectrum Phishing Website: electrumsecure.
Several wallets - like Coinomi, Electrum and Wasabi - moved straight to this.
Bitcoin desktop wallet client Electrum has released a 4.0 beta version, adding several important updates, including support for the Lightning network, nearly a year after the previous version of Electrum, 3.3.8 (last July). In the 4.0 beta version, Electrum mainly added features such as PSBT (partially signed Bitcoin transactions), Lightning Network, watchtowers (暸 watchtowers) and Submarineswaps (subliminal switching). (Github)
The slow fog area said that the phishing attack that allegedly forged the upgrade prompt had stolen at least 200 BTCs, and that the attack could not have been avoided by upgrading Electrum alone, requiring the entire ecological service to make corresponding changes (because the Electrum client is not a full node, and then has a message on the transaction broadcast and the corresponding service side, the attacker can also deploy a malicious server). Slow fog zones remind users that phishing attacks like Electrum require long-term vigilance. The slow fog zone has previously issued an alert for selectrum phishing updates, and hackers who attacked Electrum wallets used Electrum's software to unusually construct malicious software update prompts to induce users to update and download malware usage. (Slow Fog Zone)
The summit was attended by heavyweight guests such as INGOT CoinChief Risk Management Officer Zeid Madbak, INGOT Coin Asia Pacific Community Director Iyas Sartawi, INGOT BROKERS China General Manager Forrest Lu, and other heavyweight guests, as well as blockchain representatives from MANYVOICE, Mars Finance, Fireball Finance, Bit Express, Coin World and many other industry media.
At the time of writing, at least 1,450 BTCs (stolen by one user, antimalware firm Malwarebytes and Electrum) had been stolen in phishing attacks that faked Electrum upgrade tips, with a total value of approximately $11.6 million.
If someone's Electrum wallet connects to one of these servers and tries to send a BTC transaction, they see an official message telling them to update their Electrum wallet, as well as a scam URL.