Author

Topic: just got hacked through electrum (Read 448 times)

HCP
legendary
Activity: 2086
Merit: 4363
February 16, 2019, 04:10:45 PM
#32
That is because it wasn't a hack... it was social engineering. The exploit simply allowed the attackers to display a message with a clickable link. It did NOT give any access to private keys or seeds.

So, any funds held in the legitimate wallet were "safe"... Funds were only lost if users then manually downloaded, installed and ran the "fake" version of the wallet (that failed digital signature validation!) that was being advertised via this software bug/exploit. Users who did nothing were safe.

If users attempted to validate the digital signature of the wallet (that they had to manually download) before they installed/ran it... then they would have found it was fake, and would have most likely avoided losing funds.
legendary
Activity: 1090
Merit: 1000
February 16, 2019, 03:38:00 PM
#31
This was a big kick in the balls for all electrum users. No matter how many times they fix it now, I don't think I'll ever use electrum again. The trust is lost. It is either the core wallet or nothing now.

You won't get much sympathy here. Some insist on blaming the users for not verifying the download despite the hack happening in a verified wallet.

The same crew insists its a software bug not a hack. Whatever it was, it was to the tune of 1 million bucks or more.



legendary
Activity: 3472
Merit: 10611
February 15, 2019, 11:46:57 PM
#30
This was a big kick in the balls for all electrum users. No matter how many times they fix it now, I don't think I'll ever use electrum again. The trust is lost. It is either the core wallet or nothing now.

just out of curiosity would you mind explaining why you ignore the vulnerabilities that have existed and do exist in bitcoin core and still trust it while your logic in this comment is that if a software has a bug it is not-trusted?

here is a list of them with their seriousness, the latest of which was a validation check which could easily be exploited and split the whole network: https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures
legendary
Activity: 3276
Merit: 2442
February 15, 2019, 01:08:32 AM
#29
This was a big kick in the balls for all electrum users. No matter how many times they fix it now, I don't think I'll ever use electrum again. The trust is lost. It is either the core wallet or nothing now.
HCP
legendary
Activity: 2086
Merit: 4363
February 15, 2019, 01:01:30 AM
#28
Using v3.2.3 I saw the phishing popup yesterday from one of the rogue servers when i tried to do a tx. I'm sorry I forgot to screenshot, but it wasn't a github url. It was electrumsomething.com. Probably github kicked the phishers out and they registered another more "innocuous looking" url... .
Thanks for the report...


Can confirm that "electrumd o w n l o a d.com" (DO NOT VISIT - SCAM URL!) is a phishing URL... with version "4.0.0" available for download...

Chrome initially warned that the website was unsafe... After manually "proceeding" to the website, I attempted to download it onto the sandboxed VM... and Windows Defender detected a trojan (Trojan:Win32/Spursint.F!cl) and removed the download. After manually allowing it... I tried to GPG check the file and got "gpg: Can't check signature: No public key"

Be safe out there!
legendary
Activity: 2030
Merit: 1573
CLEAN non GPL infringing code made in Rust lang
February 14, 2019, 07:38:01 PM
#27
I have version 3.0.3 and i have a password when i open my wallet and send.
Did you download Electrum from anywhere else other than electrum.org? Like a github link?

Did you receive a popup telling you to update your Electrum after trying to make a transaction?

Using v3.2.3 I saw the phishing popup yesterday from one of the rogue servers when i tried to do a tx. I'm sorry I forgot to screenshot, but it wasn't a github url. It was electrumsomething.com. Probably github kicked the phishers out and they registered another more "innocuous looking" url... I just switched to a trusted known server and did the tx fine (despite another nag saying my Electrum was "vulnerable", download a new version from electrum.org yadda, yadda.).

I already upgraded to v3.3.3... Was just waiting for the Arch package update.
copper member
Activity: 2562
Merit: 2510
Spear the bees
February 14, 2019, 01:13:16 AM
#26
It seems ludicrous to cry about coins that you lost due to your own stupidity.

If you drop a thousand dollars on the street, do you run up to your bank to ask them to refund you?
If you get scammed, it is no one's fault except your own. (that, and the scammer's)
legendary
Activity: 1624
Merit: 2481
February 12, 2019, 06:09:45 AM
#25
Legendary why you dont want electrum to show security alerts to users? You want to fool users?

Simple.

1)
Because it is NOT necessary. Anyone with a brain (who actually is able to use it properly) knows how to stay up-to-date.
And people who don't have any clue about security, shouldn't store cryptocurrencies on a desktop wallet at all.

2)
It creates additional attack vectors. I know that you don't understand anything regarding security/vulnerabilities.
So either just believe me or do your own research.


You fell to a very very basic phishing scam. Admit it, learn from it and move on.
I stop responding to your trolling posts now because it seems that you don't learn anything from it anyway.
legendary
Activity: 1624
Merit: 2481
February 12, 2019, 03:52:45 AM
#24
not enough

That is definitely enough.

It is MORE than you should expect.

Everyone is responsible for his own actions. If you fall for cheap phishing messages, you should consider using a hardware wallet or not using cryptocurrencies at all.

Noone and nothing stops you from receiving an email "sent by" electrum.org which says you to download a new (malicious) version, etc..
This is due to the fact that email is a broken protocol.
If YOU fall for something like this, it is YOUR fault. Same goes with downloading files without verifying the signatures.
HCP
legendary
Activity: 2086
Merit: 4363
February 11, 2019, 11:34:19 PM
#23
Are you just trolling on purpose now? Or is it just that you fail to grasp that all of the things you want:

- Electrum to notify of updates
- Electrum to not display arbitrary text in error messages
- Electrum to post notification of security alerts

have already been implemented... Latest version of Electrum includes "opt-in" update notifications... it has been patched so only hardcoded error messages will be displayed... and the devs always post on the official website regarding security issues... they've even started using "good" servers to notify users of older versions that they should update.

This has been pointed out to you multiple times in multiple threads and you keep saying "not enough" Roll Eyes

What more do you want the devs to do? Huh
HCP
legendary
Activity: 2086
Merit: 4363
February 09, 2019, 09:04:52 PM
#22
I think my electrum wallet is hacked too.

Yesterday i received 0.048 btc , clock 08.50 pm.
Then ,  clock 00.27 am i have send those bitcoins but i havent.
Whats going on ??
Given that you haven't been a victim of the current phishing scam and downloaded a malware version of Electrum, then it is likely that your wallet seed mnemonic (12 words) have been compromised.

- Have you ever stored your Electrum 12 word seed mnemonic in a digital format? ie. text file or screenshot on your PC, email or cloud file storage?
- Have you ever entered your Electrum 12 word seed mnemonic in another wallet, website or other application for trying to access fork coins like Bitcoin Cash, Bitcoin Gold, Bitcoin Diamond etc etc?

NOTE: as TryNinja says... you cannot get your coins back... and Electrum accept no liability. The point of these questions is to try and help you understand why you lost your coins so you can avoid making the same mistakes.
legendary
Activity: 2758
Merit: 6830
February 09, 2019, 12:36:14 PM
#21
Stop multi-posting.

There is nothing you can do and Electrum won’t pay you anything. Your coins are are gone. Sorry, but you should just accept and move on.
full member
Activity: 191
Merit: 100
February 09, 2019, 12:33:54 PM
#20
There is nothing what i can do Huh
full member
Activity: 191
Merit: 100
February 09, 2019, 11:31:52 AM
#19
Electrum should pay me for my lost coins  !!!
full member
Activity: 191
Merit: 100
February 09, 2019, 11:18:48 AM
#18
and i have a password in my wallet
legendary
Activity: 1624
Merit: 2481
February 09, 2019, 11:16:36 AM
#17
It happened because the software stopped me from proceeding you fucking idiot!

That's not completely true.

The electrum server which you were connected to (which can by run by anyone who wants to) didn't broadcast your transaction.
That's not related to the electrum wallet itself.


Instead of simply clicking on an URL to download software which you didn't even verify the signature of, you could have simply connected to a different (non-malicious) electrum server.


I don't know how often you already read that here on the forum.. but.. Verify, don't trust!





I havent receive any popups and i downloaded from their site about two years ago.

The fact that you didn't update a software which holds your money for about 2 years, is already pretty bad.

Unfortunately there is no way for you to get the money back.


Since you didn't download a malicious wallet trough a phishing attempt and since your wallet is password protected, i'd say that the most plausible explanation is that your computer is infected with malware.

Did you download any half-way-shady software within the recent days ?
Do you use a legal copy of windows (cracked versions almost always have backdoors built in) ?

full member
Activity: 191
Merit: 100
February 09, 2019, 11:15:46 AM
#16
I havent receive any popups and i downloaded from their site about two years ago.

This is the transaction what i havent made :

https://www.blockchain.com/btc/tx/785727d486869504a0e9e505b7430001ea7d0d2ce574ebde00fccc21b42e2d9c
legendary
Activity: 2758
Merit: 6830
February 09, 2019, 10:58:40 AM
#15
I have version 3.0.3 and i have a password when i open my wallet and send.
Did you download Electrum from anywhere else other than electrum.org? Like a github link?

Did you receive a popup telling you to update your Electrum after trying to make a transaction?
full member
Activity: 191
Merit: 100
February 09, 2019, 10:55:47 AM
#14
I have version 3.0.3 and i have a password when i open my wallet and send.
full member
Activity: 191
Merit: 100
February 09, 2019, 10:54:18 AM
#13
Hi..

I think my electrum wallet is hacked too.

Yesterday i received 0.048 btc , clock 08.50 pm.

Then ,  clock 00.27 am i have send those bitcoins but i havent.

Whats going on ??


       Mika
legendary
Activity: 3472
Merit: 10611
February 08, 2019, 12:28:40 AM
#12
What kind of software doesn’t tell you when important updates are required?

in my opinion it is mainly because there is a lot of controversy circling the wallet softwares that do alert users of new versions. so developers decide not to include such features in their software.

in any case, you are in a decentralized world using a decentralized currency with open source/free software. it is your own responsibility to follow their vulnerabilities, shortcomings,... and learn how to increase your own security as much as possible. nobody is going to take your hand and do it for you.
HCP
legendary
Activity: 2086
Merit: 4363
February 07, 2019, 03:43:30 PM
#11
It is all rather moot anyway... it looks like you got your wish... they've added (opt-in) update notifications to Electrum, and apparently have started using "good" servers (via an ElectrumX update) to broadcast update notifications to older versions of Electrum that are vulnerable to the exploit.
HCP
legendary
Activity: 2086
Merit: 4363
February 07, 2019, 06:20:18 AM
#10
electrum should protect its users. If op run electrum and it says "No. You are using old version and it has been hacked. It has been fixed in the latest version. Download the latest version from electrum.org" then we dont have topics like this
What kind of software doesn’t tell you when important updates are required?
And what happens when the centralised update server gets hacked... broadcasts a spam to all users that they need to update to new version and all the users blindly trust that because "it is the Electrum update server" and download a malware wallet and lose all their funds? You'd all be asking "why Electrum have forced update notification?"

"Be your own bank" implies "Be your own Bank's security department as well". Everyone is all about the "freedom" of Cryptocurrency... no-one seems to want the added responsibility that comes with that freedom.

There are ways and means to protect yourself... and the easiest is to ALWAYS verify the digital signature of the Electrum installer (or portable .exe). Even when I have downloaded it from Electrum.org, I will ALWAYS verify the digital signature of the downloaded file to confirm it is legit.

So, even if I had received the spam message, ignored the fact it redirected to github instead of the official website and downloaded the malware installer, I never would have installed it... because the malware installer would have FAILED the digital signature verification.
hero member
Activity: 3150
Merit: 636
DGbet.fun - Crypto Sportsbook
newbie
Activity: 5
Merit: 0
February 07, 2019, 03:45:54 AM
#8
What kind of software doesn’t tell you when important updates are required?
newbie
Activity: 5
Merit: 0
February 07, 2019, 02:42:58 AM
#7
What’s happening is the equivalent of your bank letting you use a mobile app as your only way to bank, then not telling you hackers have taken it over and you won’t be able to withdraw your money. What good is updates on your website when you have no reason to go to the website in the first place. This is a complete crock of shit
newbie
Activity: 5
Merit: 0
February 07, 2019, 02:28:54 AM
#6
It happened because the software stopped me from proceeding you fucking idiot!


lol. "has been fixed in the latest version" but old users dont know about that

Well they should always verify a signature before they download and install the apps. That's the basic steps to protect yourself. Blaming everything on the software won't solve anything, help yourself by making sure you install the correct apps.
sr. member
Activity: 910
Merit: 351
February 07, 2019, 12:54:20 AM
#5
lol. "has been fixed in the latest version" but old users dont know about that

Well they should always verify a signature before they download and install the apps. That's the basic steps to protect yourself. Blaming everything on the software won't solve anything, help yourself by making sure you install the correct apps.
legendary
Activity: 2758
Merit: 6830
February 06, 2019, 10:29:02 PM
#4
I've never been phished before, its fucked up because it comes from the app. Not being mean towards you this is fucked up. they need to pull the service if they can't run it decently
It was a vulnerability. The Electrum servers (which anyone can run due to its descentralized nature) could make the Electrum wallet connected to it show a customized error message. So, the hacker deployed a bunch of malicious servers they showed the “please update” message you say.

When dealing with money, you should never put your guard down. Verifying the signatures of the binaries should be a mandatory step when downloading/updating Electrum.

Anyways, the vulnerability has been fixed in the latest version which was launched a few days ago and that you didn’t have. Unfortunately, it’s too late now. Sorry.
newbie
Activity: 5
Merit: 0
February 06, 2019, 10:21:05 PM
#3
I've never been phished before, its fucked up because it comes from the app. Not being mean towards you this is fucked up. they need to pull the service if they can't run it decently
legendary
Activity: 2758
Merit: 6830
February 06, 2019, 10:13:48 PM
#2
Which version were you previously using? Did you receive a “warning popup” - after trying to do a transaction -  telling you to update your Electrum from a github link?

If that’s the case, your fell for a phishing scam and your coins are gone. There is nothing you can do since BTC transactions are irreversible.

Do a clean reinstall of your OS and create a new wallet. Both your PC and walet are most likely compromised. Also, NEVER dowpoad Electrum from a website that isn’t electrum.org; That’s the ONLY legit place you can get it.
newbie
Activity: 5
Merit: 0
February 06, 2019, 10:09:17 PM
#1
I tried to send coins out of electrum and was stopped for upgrades, when I get back in my money is gone? I frooze the transaction and it confirmed anyway. Do they even have support to contact? I have no money now, how is this happening,
Jump to: