Google has removed 49 Chrome extensions from its online store disguised as legitimate cryptocurrency wallet apps such as Ledger, MyEtherWallet, Trezor, electrum, but containing malicious code designed to steal encrypted wallet keys, monemone phrases and other original secrets, ZDNet reported.
Hackers launched a denial-of-service (DoS) attack on a well-known wallet Electrum server, according to Johnwick.io. Hackers used botnets of more than 140,000 computers to attack Electrum nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the Backdoor Client. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. De-dimensional Security Labs recommends that users of electrum wallets be updated to the latest version of the client through the official website and never use the link in the prompt message.
Send the coin to another wallet for long-term bitcoin storage. There should be a full node behind the wallet, such as the Electrum node pointing to your own Electrum server.
This isn't the first time Thatectrum has appeared in a fake version, with hackers developing a fake encrypted wallet, Electrum, in December, resulting in the theft of nearly 250 bitcoins worth about $1 million. In January, GitHub discovered a fake Electrum wallet called "Electrvm" designed to steal users' money. In February, users of encrypted wallets Electrum and MyEtherWallet reported that they were facing phishing attacks. (Stationer's House)
m/44'/60'/0'/0/x: BIP44, imToken (customizable path), MetaMask, Jaxx, MyEtherWallet, TREZOR, Exodusm/44'/60'/x'//0/0: BIP44, KeepKey, MetaMaskm/44'/60'/0'/x: Electrum, Ledger Chrome App, m/44'/coin_type'/account'/0:Coinomi.
In recent days, hackers or hacker groups have stolen more than 200 bitcoins worth about $750,000 by attacking the infrastructure of electrum Bitcoin wallets. The attacker is targeting Electrum.
Denley found extensions for wallet applications for different companies such as Ledger, Jaxx, Electrum, Meta Mask, and Exodus. He also revealed that hackers may not be as skilled as people think. Theft often doesn't happen immediately, which means that hackers may not have discovered how to do it automatically, but have to access each wallet separately.
Ledger Nano S supports more than 1,000 coins and tokens, including Bitcoin, Ether, Ether Classic, Litecoin, Ripple, Dog Coins, Zcash, Dash, and many ELC-20 tokens. Nano S can interact with online wallets, MyEtherWallet, Mycelium and Electrum.
By default, the device does not pre-install any wallet applications. You need to manually download these files by connecting ledger NanoX to Ledger Live. With its Bluetooth capabilities, the Ledger NanoX can be paired wirelessly with mobile devices running LedgerLive. If you want to connect your device to your desktop computer, you must use the included USB cable.
The Electrum development team also warned them that they had nothing to do with a project called Electrum Dark: they used our name without our permission. Be careful with the altcoin version of Electrum, as they are sometimes used as vectors to install malware against your real Bitcoin wallet.
Attackers reportedly created their own Electrum servers, which hosted the attacked version of Electrum in order to implement the attack. When the user will be vulnerable.
Will the world eventually be ruled by algorithms, and will Zhang Xiaolong, the face waller who does not embrace algorithms, continue to sing?
Wallet Qtum Electrum
Users of Bitcoin wallet Electrum are facing phishing attacks, according to Johnwick.io. Hackers broadcast messages to the Electrum client through a malicious server, prompting the user to update to v4.0.0, and if the user follows the prompt to install this "backdoor-carrying client", the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth about $11.6 million had been stolen from phishing attacks that faked Electrum upgrade tips. DeViable Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum 3.3.8 via the official website (electrum.org), which has not yet been officially released, and do not use the link in the prompt to avoid asset losses.
"Face Waller" is a heroism title created by Da Liu with a mediumChinese environment, different from the Hollywood hero's close physical struggle, "Face Waller" is a thinker, strategist, at risk, closed thinking about the strategy of breaking the enemy.
Electrum (Ready)
Electrum is a world-renowned Bitcoin light wallet with a long history of supporting multi-signatures and a very broad user base, many of which like to use Electrum as a cold wallet or multi-sign wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have a "message flaw" that allows an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing for the user, and if you follow the prompt to download the so-called new version of Electrum, you may get a trick. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more. This captured currency theft attack is not stealing the private key (electrum's private key is generally stored with two-factor encryption), but replaces the transfer destination address when the user initiates the transfer. Here we remind users that when transferring money, special attention needs to be paid to whether the destination address has been replaced, which is a very popular method of currency theft recently. It is also recommended that users use hardware wallets such as Ledger, if paired with Electrum, although the private key will not have any security issues, but also need to be alert to the target address is replaced.
Popular wallet developer Electrum has released an emergency patch for a key vulnerability in its Bitcoin wallet. The vulnerability allows any website hosting electrum wallets to potentially steal a user's cryptocurrency. A vulnerability means that the password is exposed to the JSONRPC interface, implying that the hacker has full control over the wallet. The first patch failed to fix the problem, forcing Electrum to release a second update on Sunday night.
The electrum and Electrum-LTC versions below 3.3.3 are vulnerable to phishing attacks in which a malicious server displays a message asking the user to download the fake Electrum. To prevent user exposure, versions older than 3.3 can no longer connect to public servers and must be upgraded. Do not download software updates from sources other than electrum.org and electrum-ltc.org.
The Electrum team has announced the attack in an official tweet, saying that "this is an ongoing phishing attack on Electrum users" and reminding users to check the authenticity of the client's source before logging in. The team published its official website, and electrum clients downloaded elsewhere may be problematic.
Dash releases Dash Electrum 3.3.8.4 version
The main reason for the Trezor vulnerability is that it does not have built-in multi-signature functionality, so its multi-signature implementation is to support Electrum extensions. This leads to an attack on Electrum, and Trezor is affected.
connecting electrum waller to ledger
Electrum 0.18.8 is available for details at github.
According to the slow fog zone, the Phishing attack by Electrum forged upgrade tips has stolen at least 200 BTCs, and this attack cannot be avoided by upgrading Electrum alone, requiring the entire ecological service to make corresponding changes (because Electrum is not a full node, and then on the transaction broadcast and the corresponding server has a message communication, the attacker can also deploy a malicious server)