• Advertise
  • Submit a Press Release
NewsBTC
Bitcoin & cryptocurrency news
Crypto.com Logo
  • Home
  • News
    • Bitcoin
    • Ethereum
    • Cardano
    • Dogecoin
    • Ripple
    • DeFi
    • NFT
    • Sponsored
    • Press Releases
  • Analysis
    • Bitcoin (BTC)
    • Ethereum (ETH)
    • Cardano (ADA)
    • Chainlink (LINK)
    • Litecoin (LTC)
    • Tezos (XTZ)
    • Zcash (ZEC)
    • EOS
    • YearnFinance (YFI)
  • Trading Course
  • Directory
    • Crypto Businesses
    • Bitcoin Brokers
    • Casinos
    • Sportsbooks
  • Play GamesTry
  • Bet & WinTry
No Result
View All Result
  • Home
  • News
    • Bitcoin
    • Ethereum
    • Cardano
    • Dogecoin
    • Ripple
    • DeFi
    • NFT
    • Sponsored
    • Press Releases
  • Analysis
    • Bitcoin (BTC)
    • Ethereum (ETH)
    • Cardano (ADA)
    • Chainlink (LINK)
    • Litecoin (LTC)
    • Tezos (XTZ)
    • Zcash (ZEC)
    • EOS
    • YearnFinance (YFI)
  • Trading Course
  • Directory
    • Crypto Businesses
    • Bitcoin Brokers
    • Casinos
    • Sportsbooks
  • Play GamesTry
  • Bet & WinTry
No Result
View All Result
NewsBTC
No Result
View All Result
hacker bitcoin
Nexo Logo

Bitcoin Wallet Compromise: Electrum Wallet Breach Costs Users Over $750,000

Rick Delafont by Rick Delafont
4 years ago
in Bitcoin
Reading Time: 3 mins read
Advertisement

According to emerging reports, the popular Bitcoin wallet software Electrum has been attacked costing those affected over $750,000 worth of Bitcoin. The security breach involved hackers tricking the wallet into urging users to make a critical update.

Those affected were then redirected to an unauthorised GitHub repository where an unofficial update was made to the software. Although stopped for now, the Electrum team believes that more attacks could be on the way.

Electrum Wallet Security Breach Costs Users Over $750,000 in Bitcoin

Reports in ZDNet state that the security compromise was made possible because of a vulnerability that allows Electrum servers to generate popups using custom text. The hackers used fake Electrum servers to display such a popup requesting users make an emergency update. There are believed to be a total of 33 of these servers.

5 BTC + 300 Free Spins for new players & 15 BTC + 35.000 Free Spins every month, only at mBitcasino. Play Now!

The Electrum attack began on Friday, December 21 and, although it now appears to have stopped, there is reason to believe that those behind it will strike again soon. This is because the dev team are still to patch the vulnerability. For now, GitHub admin have removed the fraudulent repo but there are concerns that the same scam could be repeated using a link to a different repository or alternative download source.

Despite not working out how to stop similar repeat attacks, there was an early attempt to mitigate the amount of damage done to the balances of users’ wallets. The Electrum team were able to change the hackers’ message from a rich HTML text. This radically altered the appearance of the text and removed the attached link to the fake GitHub repo.

An anonymous developer at Electrum, known as SomberNight, stated the following after the team had changed the hackers’ message:

BitStarz Player Lands $2,459,124 Record Win! Could you be next big winner?
Get 110 USDT Futures Bonus for FREE!

“We did not publicly disclose this [attack] until now, as around the time of the 3.3.2 release, the attacker stopped… However they now started the attack again.”

Unfortunately, some users still fell for the attack and manually copied and pasted the URL featured within the illegitimate message. They then downloaded the unofficial update and had their funds taken. This prompted GitHub admins to remove the repo itself.

A large red flag for anyone concerned that they may become a victim of the Electrum hack is that the newly installed, compromised software requests users to enter a two-factor authentication (2FA) code upon startup. On the Electrum wallet, 2FA codes are only requested when transferring funds. By entering the code on startup, the unsuspecting wallet users’ essentially green-lighted the theft of their own Bitcoin.

Bitcoin Itself Remains Unhacked

Although certainly unfortunate for those impacted by the hack, the robust security model of Bitcoin remains unaffected. Rather than demonstrate weakness within the network itself, attacks like this one serve to highlight the dangers of storing funds in a desktop wallet rather than a paper or hardware one.

Such hacks remind users of Bitcoin to be vigilant of their own security. All “hot wallets” (desktop, mobile, online – anything connected to the internet) should be considered at risk of breach by some method.

Perhaps the group most at risk of such attacks are users of centralised cryptocurrency services like exchanges. They would be much better served with proper cold storage methods (like those listed above), rather than whatever custodial solution the service in question offers. Exchanges have been hacked many times previously and will be again.

Such instances of security compromise recently prompted Bitcoin billionaire Trace Mayor to publicly encourage what he has named “Proof-of-Keys” on January 3. The idea behind this is encourage Bitcoin users to remove all funds from wallets that users do not possess the private keys of – thus being able to utilise all the truly ground-breaking qualities of Bitcoin.

A fun little video to remind people about #ProofOfKeys by the Hungry Hodler and music by @JoakimKarud.

The moneybadger running off with its own private keys is a wonderful touch!

Thanks guys. ?https://t.co/xep4mQXp5p

— Trace Mayer (@TraceMayer) December 24, 2018

 

Related Reading: Electrum Copycat Crypto Wallet Steals Seed Keys

Featured Image from Shutterstock.

 

 

 

 

 

 

 

Tags: bitcoinElectrumSecurity compromise
Tweet123Share196ShareSend
Win up to $1,000,000 in One Spin at CryptoSlots
Rick Delafont

Rick Delafont

Based in Europe, Rick has written about the cryptocurrency industry since 2016. He was first drawn to Bitcoin as a means of payment but quickly became fascinated by its wider potential implications. His interests lie in the political, economic, and social impact of the unfolding digital asset revolution.

Related Posts

Bitcoin

Bitcoin “Reserve Risk” Metric Approaches All-Time Lows

1 day ago
bitcoin

Outflows Rock Bitcoin As Institutional Investors Pull The Plug, More Downside Coming?

1 day ago
Bitcoin

First In History: Bitcoin Mayer Multiple Records Lower Value Than Last Cycle’s Low

2 days ago
crypto

Crypto Liquidations Settle As Bitcoin Recovers Above $21,000

2 days ago
Bitcoin

Why Pain May Not Be Over For Bitcoin Holders Just Yet

3 days ago
Bitcoin

Bitcoin Regains Some Luster With 15% Rally To $21,700 – Can It Maintain The Shine?

3 days ago

Premium Partners

Top Brokers

PrimeXBT

PrimeXBT

Review · Visit

Top Casinos

BitStarz

BitStarz

Review · Visit
7BitCasino

7BitCasino

Review · Visit
BC.Game

BC.Game

Review · Visit
Punt Casino

Punt Casino

Review · Visit
mBit

mBit

Review · Visit
CryptoGames

CryptoGames

Review · Visit
Bspin

Bspin

Review · Visit

Sportsbooks

1xBit

1xBit

Review · Visit
BC.Game

BC.Game

Review · Visit

Crypto Crash: Bitcoin Falling Helplessly, Find Succour in These Two Coins

June 29, 2022

The Stock Market Crash Has Spurred Investors To Invest In Cryptocurrencies Like Mushe Token (XMU) and Quant (QNT)

June 29, 2022

TRON Breaks the 100 Million Users Mark, Celebrates Mainnet 4th Anniversary, and Announces Huge Hiring Push Amid Market Meltdown

June 29, 2022

LBank Exchange Will List Delio(DSP) on June 30, 2022

June 29, 2022

LBank Weekly Listing Report, 27th June 2022

June 29, 2022

ABOUT US

NewsBTC is a cryptocurrency news service that covers bitcoin news today, technical analysis & forecasts for bitcoin price and other altcoins. Here at NewsBTC, we are dedicated to enlightening everyone about bitcoin and other cryptocurrencies.

We cover BTC news related to bitcoin exchanges, bitcoin mining and price forecasts for various cryptocurrencies.

COMPANY

  • Advertising
  • Comments Policy
  • Privacy Center
  • Sitemap
  • About Us
  • Contact

Technical Analysis

  • Bitcoin (BTC)
  • Ethereum (ETH)
  • Ripple (XRP)
  • Chainlink (LINK)
  • Cardano (ADA)
  • Tezos (XTZ)

LINKS

Crypto Prices from Nomics

Cryptocurrency news

  • Bitcoin
  • Ethereum
  • Ripple
  • Chainlink
  • Cardano
  • EOS
  • Tezos

© 2021 NewsBTC. All Rights Reserved.

  • Home
  • News
    • Bitcoin
    • Ethereum
    • Cardano
    • Dogecoin
    • Ripple
    • DeFi
    • NFT
    • Sponsored
    • Press Releases
  • Analysis
    • Bitcoin (BTC)
    • Ethereum (ETH)
    • Cardano (ADA)
    • Chainlink (LINK)
    • Litecoin (LTC)
    • Tezos (XTZ)
    • Zcash (ZEC)
    • EOS
    • YearnFinance (YFI)
  • Trading Course
  • Directory
    • Crypto Businesses
    • Bitcoin Brokers
    • Casinos
    • Sportsbooks
  • Play Games
  • Bet & Win

© 2021 NewsBTC. All Rights Reserved.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Center or Cookie Policy.