Author

Topic: Am I screwed? Electrum Wallet (Read 698 times)

HCP
legendary
Activity: 2086
Merit: 4363
December 29, 2017, 02:37:26 AM
#14
Yes... that is the BIP39 word list... openly published: https://github.com/bitcoin/bips/blob/master/bip-0039/english.txt

And yes, Electrum (currently) uses words from that list when it is converting the randomly generated seed (a very large number) into the 12 word seed mnemonic.

And no, they cannot. The chances of someone entering 12 "random" words from the list and accessing a wallet are very very very very very VERY small... hell, the chances of someone entering 12 of those words at random and actually getting a "valid" seed are small (the 12th word is actually a checksum)... not ALL combinations of 12 words are valid seeds.

Some rough maths here: https://www.reddit.com/r/Bitcoin/comments/6twuj1/are_12word_seeds_for_bitcoin_private_keys_secure/
newbie
Activity: 33
Merit: 0
December 29, 2017, 01:59:40 AM
#13
TBH, Such threads create a fear as i am about to start using Electrum from today.

Edit: Please create your own thread.

Thank you for the reply. Yes, i did activate the 2FA. Maybe that's the reason why they asked me my email ID.
Yes, this is the reason it asks for your email address. The 2FA wallet feature uses TrustedCoin API, and they require your email address when you agree to the Terms and Conditions:
https://i.imgur.com/n6N6lgj.png

This is normal, and, for Electrum 2FA, I'm fairly sure they don't actually send you any confirmation email... I believe the email address is used purely for creating an "account" with TrustedCoin so that when you buy prepaid 2FA service fees, they can track your account credit.

And possibly receive notifications when a transaction is sent...



So I have a list of 2048 words I found In electrum files.

Are these the 12 or 13 words electrum picks from when the seed is made?

Can Someone enter 12 random words from the list and access any wallet?
HCP
legendary
Activity: 2086
Merit: 4363
October 08, 2017, 04:35:34 PM
#12
TBH, Such threads create a fear as i am about to start using Electrum from today.

Edit: Please create your own thread.

Thank you for the reply. Yes, i did activate the 2FA. Maybe that's the reason why they asked me my email ID.
Yes, this is the reason it asks for your email address. The 2FA wallet feature uses TrustedCoin API, and they require your email address when you agree to the Terms and Conditions:


This is normal, and, for Electrum 2FA, I'm fairly sure they don't actually send you any confirmation email... I believe the email address is used purely for creating an "account" with TrustedCoin so that when you buy prepaid 2FA service fees, they can track your account credit.

And possibly receive notifications when a transaction is sent...
newbie
Activity: 29
Merit: 0
October 08, 2017, 01:09:29 PM
#11
TBH, Such threads create a fear as i am about to start using Electrum from today.

Edit: Please create your own thread.

Thank you for the reply. Yes, i did activate the 2FA. Maybe that's the reason why they asked me my email ID.
legendary
Activity: 2758
Merit: 6830
October 08, 2017, 01:01:32 PM
#10
TBH, Such threads create a fear as i am about to start using Electrum from today. I have been using LBC type of wallets but i heard they aren't safe. So I just finished setting up the portable version of Electrum and it asked my email ID but i didn't receive any confirmation email at all, so i am unable to confirm if i am doing it right.
AFAIK Electrum doesn't ask for your email for a default wallet. Can you provide more info about this?
Also, phishing you from Electrum is kinda hard, since Electrum is a software. Your only concern would be avoiding a fake website that has a fake Electrum with malwares.

My guess it that OP has fallen for a phising version of the website he is using to buy Bitcoin.
legendary
Activity: 3710
Merit: 1586
October 08, 2017, 12:58:33 PM
#9
TBH, Such threads create a fear as i am about to start using Electrum from today.

Edit: Please create your own thread.
newbie
Activity: 29
Merit: 0
October 08, 2017, 12:13:52 PM
#8
TBH, Such threads create a fear as i am about to start using Electrum from today. I have been using LBC type of wallets but i heard they aren't safe. So I just finished setting up the portable version of Electrum and it asked my email ID but i didn't receive any confirmation email at all, so i am unable to confirm if i am doing it right.
legendary
Activity: 3710
Merit: 1586
October 05, 2017, 11:37:24 AM
#7
There is no need to reinstall electrum if he just wants to restore his wallet. He can begin the process via file > new/restore.
hero member
Activity: 3220
Merit: 636
DGbet.fun - Crypto Sportsbook
October 04, 2017, 09:29:07 AM
#6
I bought Bitcoin and sent it straight to my wallet. I'm positive I accidently clicked a phishing link because I tried to send it to a different wallet and it asked for a Google authenticator code which I haven't set up. I tried to then change my password but it kept saying my current password was incorrect then logged me out. Now I can't login with the password that I know is right. Did someone hack into my electrum wallet? And are my Bitcoins gone forever? Or can electrum help get them back in any way?

Can you post the bitcoin address you've got so that we can check on how much you did sent / bought on it?

And also can you post that link here so that everyone should be aware of what that phishing link is so we can raise awareness and can warn other people who are using electrum.

You should be aware also on why did it asked for a google authenticator if you haven't set it up.

Just do the suggestion of cr1776, re-install electrum and put the seeds / private key on it.
sr. member
Activity: 266
Merit: 251
October 04, 2017, 08:34:19 AM
#5
Check every time the link and careful to click a phishing site guys... .
newbie
Activity: 2
Merit: 0
October 04, 2017, 07:51:31 AM
#4
I bought the Bitcoins from Paxful and sent them to my electrum wallet on my laptop. The wallet was standard because I had not planed on using it for long (A mistake on my part.) I got asked to enter the authenticator code when I tried to send the Bitcoin to another wallet. The password worked at the time but didn't when I tried resetting the password on the wallet itself. I guess the only thing I can get out of this is to be more careful about online currency.
staff
Activity: 3500
Merit: 6152
October 04, 2017, 07:44:40 AM
#3
I'm not getting the whole thing, It's very unclear If you are speaking about a site or Electrum so a few questions to understand:

1. From where you bought the bitcoins and where you sent them?
2. Is the receiving wallet a 2FA or standard?
3. Which service asked you to type a Google authenticator code?

It's worth mentioning that even If you have visited a phishing site, It's very unlikely that you got infected by a malware that resulted into having your desktop wallet compromised. While waiting your above answers, I can still tell you that If you have sent the funds to your the correct wallet, you should be able to retrieve them using the seed whether you have 2FA enabled or not. Electrum can't help you do anything because you are the one in control of the wallet, your private keys, password or seed are not stored in their servers.
legendary
Activity: 4256
Merit: 1313
October 04, 2017, 07:35:50 AM
#2
I bought Bitcoin and sent it straight to my wallet. I'm positive I accidently clicked a phishing link because I tried to send it to a different wallet and it asked for a Google authenticator code which I haven't set up. I tried to then change my password but it kept saying my current password was incorrect then logged me out. Now I can't login with the password that I know is right. Did someone hack into my electrum wallet? And are my Bitcoins gone forever? Or can electrum help get them back in any way?

Do you know the address you sent to?  If so, you can look at it with a block explorer and see if they are there.

Do you know the seed words that Electrum gave you?  If so, you can reinstall Electrum on a clean machine and then immediately transfer the coins to a new address NOT associated with your old wallet since you are positive you clicked a phishing link.
newbie
Activity: 2
Merit: 0
October 04, 2017, 07:18:53 AM
#1
I bought Bitcoin and sent it straight to my wallet. I'm positive I accidently clicked a phishing link because I tried to send it to a different wallet and it asked for a Google authenticator code which I haven't set up. I tried to then change my password but it kept saying my current password was incorrect then logged me out. Now I can't login with the password that I know is right. Did someone hack into my electrum wallet? And are my Bitcoins gone forever? Or can electrum help get them back in any way?
Jump to: