So, do you guys remember Lumi Wallet?

milewilda

legendary

Activity: 3094

Merit: 1127

Quote from: Lumi_Wallet on September 03, 2018, 07:48:53 AM

Quote from: mk4 on June 08, 2018, 12:37:47 PM

Yeah, that one cool-looking bitcoin wallet being advertised here on bitcointalk? Yeah, their web wallet sends your mnemonic phrase to their servers, as claimed by Daniel Staudigel.

Quote

Not only do they send the mnemonic to the server, they store the mnemonic (or a hash of it, but I’m guessing not) on their servers. This is either stratospherically irresponsible or Lumi is a scam wallet aiming to steal everyone’s funds at some point in the future. I haven’t been able to look into how their mobile wallets work, as I don’t have the time to do it the right way (root a phone, blah blah blah) — though I did verify they are at least using strong SSL to send your money to their servers, so at least the guy sitting next to you in Starbucks can’t steal your money… but that’s a small consolation when you’ve just sent your crown jewels to be stored by some faceless web service with zero transparency (though they have lots of blog posts with nebulous claims of security!)

It’s only a matter of time before the CEO, a rogue employee, or a hacker sweeps through the database and collects every penny of every Lumi wallet user.

Link to medium post: https://medium.com/@dandisagrees/a0cf1dd70fd0

Lumi wallet official account here:)

Yes, our web wallet was not client-side at the time of this so-called "research"
We did store our user's private keys at our servers but did store them strongly encrypted, so the mnemonic was (and is) actually hashed before being stored.

Anyway, we decided that the customer always has the final say, and created a client-side web version.

Our new client-side beta is available at https://lumiwallet.com/about-web-new?utm_medium=bitcointalk

Good to know that you do listen up on suggestions which i do really prefer on using up when its client-side rather than entrusting to use it up when keys are being stored on servers.Even its encrypted you cant really remove the doubts.

Quote from: siddartha1492 on September 11, 2018, 09:57:30 AM

Just today I read about Lumi Wallet on Cointelegraph. Seems like a user friendly wallet. I was going to try their new collectibles wallet for erc-721 tokens, but after reading this, I'll need to research more before using it.

Research plus feedbacks is all you need. Wink

siddartha1492

sr. member

Activity: 952

Merit: 284

In love with Bitcoin!! 💓💕

Just today I read about Lumi Wallet on Cointelegraph. Seems like a user friendly wallet. I was going to try their new collectibles wallet for erc-721 tokens, but after reading this, I'll need to research more before using it.

Lumi_Wallet

newbie

Activity: 4

Merit: 0

Quote from: mk4 on June 08, 2018, 12:37:47 PM

Yeah, that one cool-looking bitcoin wallet being advertised here on bitcointalk? Yeah, their web wallet sends your mnemonic phrase to their servers, as claimed by Daniel Staudigel.

Quote

Not only do they send the mnemonic to the server, they store the mnemonic (or a hash of it, but I’m guessing not) on their servers. This is either stratospherically irresponsible or Lumi is a scam wallet aiming to steal everyone’s funds at some point in the future. I haven’t been able to look into how their mobile wallets work, as I don’t have the time to do it the right way (root a phone, blah blah blah) — though I did verify they are at least using strong SSL to send your money to their servers, so at least the guy sitting next to you in Starbucks can’t steal your money… but that’s a small consolation when you’ve just sent your crown jewels to be stored by some faceless web service with zero transparency (though they have lots of blog posts with nebulous claims of security!)

It’s only a matter of time before the CEO, a rogue employee, or a hacker sweeps through the database and collects every penny of every Lumi wallet user.

Link to medium post: https://medium.com/@dandisagrees/a0cf1dd70fd0

Lumi wallet official account here:)

Yes, our web wallet was not client-side at the time of this so-called "research"
We did store our user's private keys at our servers but did store them strongly encrypted, so the mnemonic was (and is) actually hashed before being stored.

Anyway, we decided that the customer always has the final say, and created a client-side web version.

Our new client-side beta is available at https://lumiwallet.com/about-web-new?utm_medium=bitcointalk

Jesusghergo

member

Activity: 294

Merit: 10

Honestly speaking, I never knew what wallet is this Lumi Wallet. Because since I enter the world of the Bitcointalk.org, I only use one wallet which our country made for its citizens since the country I belong supports the crypto currencies.

Simon241084

newbie

Activity: 75

Merit: 0

You can find out how to send and receive passwords with Lumi and some other useful tips to keep you safe.

luckybit1

full member

Activity: 429

Merit: 100

No,am really some how new into the system.But with this question I have learnt about it.

brother3

hero member

Activity: 980

Merit: 500

Lumi now supports Atlant token (ATL)

ATL (Atlant) is an ERC20 token that you can now send, keep and exchange in Lumi wallet.
https://medium.com/lumiwallet/lumi-now-supports-atlant-token-atl-efb7b6bb262a

mk4

legendary

Activity: 2870

Merit: 3873

Paldo.io 🤖

Quote from: TryNinja on June 08, 2018, 09:15:34 PM

I was looking for a thread like this one (to see if anyone had already posted this article, otherwise I would).

Unfortunately, you posted this in the Bitcoin Discussion board, where the spammers never rest. Because of this, your thread has 0 replies and isn't even on the front page of the board anymore (it got buried pretty quickly by the SMT being pumped every few minutes). Why don't you move it to the "Web Wallets" board?

Now, back to the topic: this was all the Lumi Wallet team said after the article came out:

Quote

Dear Emin, Thank you so much for spending your time and helping us make @Lumi_wallet more secure. We would love to get you on board and work together on better product. Please check out our mobile wallet as this is what we concentrated on and where we have most of our users. 💙

https://twitter.com/Lumi_wallet/status/1005172315909492738

They didn't even deny it. So I assume the wallet is (or will be) a scam.

They also "deleted" their ANN thread when they got called out by Loyce and Lauda (who neg trusted them).

Old thread: https://bitcointalksearch.org/topic/--2372646

That tweet from Lumi looks like an automated reply to me, but I don't know. But yeah. It's a huge shame. I really liked the wallet's interface a lot. This is another perfect reason why people should prevent using non-open source wallets as much as possible.

Ootsumasu

newbie

Activity: 56

Merit: 0

from the first time i accessing bitcointalk I use mew haha

actuallytwolamas

member

Activity: 69

Merit: 20

Lama

Quote from: Vincent Wright on June 09, 2018, 12:00:44 PM

Yes, I remember. The most important thing in storing cryptocurrency is a creation of a special key. This process happens entirely on your device, not on Lumi wallet servers. Private keys are under client control, they are never sent or stored outside of your device.Therefore, when you generate a new wallet, you are responsible for safely backing it up. The Lumi wallet has multi-function (Holding, sending, receiving and in-wallet exchange), multi-assets and multi-token.

Have you even read the post and the first answer? Because if you do, looks like you didn't understand anything what was said.

cryptorTUX

member

Activity: 238

Merit: 11

Yet even that we have article which states the issue I doubt it that people will just stop to use them. Firstly not every dingle user will be notified which brings down that even tough the issue has been found bot every person will know about it. It is good that you wrote this theard as it adds up to spreading the word for people who are using this wallet but do not know how secure it is. It is hard to trust anybody and people are used to go there grab free tool or get free service and go without any mistakes. Everything has its own price sadly.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: Lloyd Jacksok on June 10, 2018, 03:20:31 AM

I asked google and I got the answer: Lumi Wallet is a cryptocurrency storage which supports the most popular coins and providing users with a high security level and good quality. It is a smoothly designed, completely anonymous and easy to use wallet.

Quote from: roni12345 on June 12, 2018, 07:15:13 AM

Yes! I heard about Lumi Wallet... it is a super secure wallet and it has good privacy.

It's not. Please stop shitposting and read the article.

They also never denied or released any statement about them storing their user's seeds.

roni12345

newbie

Activity: 45

Merit: 0

Yes! I heard about Lumi Wallet... it is a super secure wallet and it has good privacy.

Lloyd Jacksok

newbie

Activity: 93

Merit: 0

I asked google and I got the answer: Lumi Wallet is a cryptocurrency storage which supports the most popular coins and providing users with a high security level and good quality. It is a smoothly designed, completely anonymous and easy to use wallet.

lizardbtc

full member

Activity: 448

Merit: 109

Nope, first time I hear about them. The best part when I went to their website is this "The most secure, easy & handy crypto wallet" - most secure until they rip you off by stealing your funds at the end of the day... I see that they are not open source which is another consearn to me. It is difficult for me to use any wallet that is not open source, I mean even with it being open source I wouldn't look up at the code as it is time consuming but it gives me another level of trust.

Vincent Wright

newbie

Activity: 97

Merit: 0

Yes, I remember. The most important thing in storing cryptocurrency is a creation of a special key. This process happens entirely on your device, not on Lumi wallet servers. Private keys are under client control, they are never sent or stored outside of your device.Therefore, when you generate a new wallet, you are responsible for safely backing it up. The Lumi wallet has multi-function (Holding, sending, receiving and in-wallet exchange), multi-assets and multi-token.

Fintan Lee

newbie

Activity: 105

Merit: 0

I want to point out the history of lumi HD, which was released in 2017. The original version supported BTC and was available for iOS users. Lumi later launched Ethereum for this platform. The next version was released for Android platform with BTC supported.

Sam San

sr. member

Activity: 630

Merit: 250

The problem of fraudulent actions with wallets is always relevant, information security is important, but you need to be careful yourself and protect your money and your data.

Kristy22

newbie

Activity: 70

Merit: 0

We want to present you Step-By-Step Guide to the Lumi wallet. You can learn how to send and receive crypto with Lumi and some more useful tips that help you to keep it safe. I try my best to be careful, because it means a lot

freesia_pnp888

newbie

Activity: 112

Merit: 0

Yup, i still remember, it's been a longgg time already

TryNinja

legendary

Activity: 2758

Merit: 6830

I was looking for a thread like this one (to see if anyone had already posted this article, otherwise I would).

Unfortunately, you posted this in the Bitcoin Discussion board, where the spammers never rest. Because of this, your thread has 0 replies and isn't even on the front page of the board anymore (it got buried pretty quickly by the SMT being pumped every few minutes). Why don't you move it to the "Web Wallets" board?

Now, back to the topic: this was all the Lumi Wallet team said after the article came out:

Quote

Dear Emin, Thank you so much for spending your time and helping us make @Lumi_wallet more secure. We would love to get you on board and work together on better product. Please check out our mobile wallet as this is what we concentrated on and where we have most of our users. 💙

https://twitter.com/Lumi_wallet/status/1005172315909492738

They didn't even deny it. So I assume the wallet is (or will be) a scam.

They also "deleted" their ANN thread when they got called out by Loyce and Lauda (who neg trusted them).

Old thread: https://bitcointalksearch.org/topic/--2372646

mk4

legendary

Activity: 2870

Merit: 3873

Paldo.io 🤖

Yeah, that one cool-looking bitcoin wallet being advertised here on bitcointalk? Yeah, their web wallet sends your mnemonic phrase to their servers, as claimed by Daniel Staudigel.

Quote

Not only do they send the mnemonic to the server, they store the mnemonic (or a hash of it, but I’m guessing not) on their servers. This is either stratospherically irresponsible or Lumi is a scam wallet aiming to steal everyone’s funds at some point in the future. I haven’t been able to look into how their mobile wallets work, as I don’t have the time to do it the right way (root a phone, blah blah blah) — though I did verify they are at least using strong SSL to send your money to their servers, so at least the guy sitting next to you in Starbucks can’t steal your money… but that’s a small consolation when you’ve just sent your crown jewels to be stored by some faceless web service with zero transparency (though they have lots of blog posts with nebulous claims of security!)

It’s only a matter of time before the CEO, a rogue employee, or a hacker sweeps through the database and collects every penny of every Lumi wallet user.

Link to medium post: https://medium.com/@dandisagrees/a0cf1dd70fd0

Topic: So, do you guys remember Lumi Wallet? (Read 371 times)