Cryptomustar
Saturday, July 2, 2022
  • Home
  • Altcoin
  • Bitcoin
  • Ethereum
  • Litecoin
  • Cryptocurrency
  • Blockchain
  • Regulation
  • Market
  • Prices
  • ICO
No Result
View All Result
  • Home
  • Altcoin
  • Bitcoin
  • Ethereum
  • Litecoin
  • Cryptocurrency
  • Blockchain
  • Regulation
  • Market
  • Prices
  • ICO
No Result
View All Result
Cryptomustar
No Result
View All Result
Home Bitcoin

Hackers send fake “update” to steal $22 million from Bitcoin wallets

by admin
October 14, 2020
in Bitcoin
0
0
SHARES
4
VIEWS
Share on FacebookShare on Twitter


Crypto-hunting hackers have stolen more than $22 million from the users of Electrum, a popular Bitcoin wallet, in the past two years using a “simple technique” involving fake updates, as per a ZDNet report Monday.

Researchers stated the hack technique was initially observed back in December 2018 and was since used in several attacks over the next few years to swindle millions of dollars from unsuspecting Electrum users. The last of such attacks was as recent as September last month.

RELATED POSTS

Bitcoin experiences worst month in history as over $400B is wiped off crypto market in June

President Bukele says ‘thank you for selling cheap,’ as El Salvador buys more Bitcoin

How an “update” proved expensive

Relevant posts on Bitcoin forums showed hackers managed to send out “update” notifications for the Electrum app on victim phones. When the latter did update their apps, the funds were immediately stolen and siphoned off to wallets allegedly controlled by the hackers.

Image: ZDNet

The hackers seemed to have a clear idea of how the Electrum wallet operated, the registries it used, and how security was handled. It was with this knowledge that they were able to go undetected and steal from victims.

Here’s how they allegedly did it: All Electrum wallets are designed to connect to the Bitcoin through ElectrumX, a network of Electrum servers the wallet app uses to process transactions and store coins.

However, Electrum’s open-source approach meant a malicious developer could set up their own ElectrumX gateway server. This allowed them to set up malicious servers and see users connect to those compromised networks, allowing the crime to occur.

The above allowed the attackers to instruct the server to display a (malicious) popup on the user’s screen with instructions for a “Security update,” as the image below shows:

Image: ZDNet

The URL is not even to Electrum’s official website, but to lookalike domains or GitHub repositories as shown above. This meant users ended up installing a bad version of the Electrum wallet. One this was done and users opened their apps, a one-time password (OTP) — which usually is used before requesting fund transfers — was displayed to users and upon their entering the correct OPT, all funds were transferred to the hackers’ wallets

Stolen Bitcoin leads to a safeguard

As per the report, the hacker wallets hold over 1980 Bitcoin, valued at over $22 million at current prices. However, a large amount of that can be traced back to a single incident in August, when a user reported losing over 1,400 Bitcoin to an Electrum wallet attack.

Meanwhile, the Electrum team has tried to mitigate such occurrences in the future. A server blacklisting system is now live on Electrum X servers to block malicious additions to their networks alongside the use of an update that prevents servers from showing HTML formatted popups to end-users.

(Anti-FUD Note: The Electrum protocol or wallet security has itself not been compromised in any manner and remains completely safe at press time. The hack was made possible using a very specific malicious method that involved Electrum, and is broadly similar to how spoofed sites steal victim funds).

Posted In: Bitcoin, Hacks

Like what you see? Subscribe for daily updates.



Source link

ShareTweetShare

Related Posts

Bitcoin experiences worst month in history as over $400B is wiped off crypto market in June

Bitcoin experiences worst month in history as over $400B is wiped off crypto market in June

by admin
July 1, 2022
0

The crypto industry has experienced its worst month ever as over $400 billion was wiped off the market by...

President Bukele says ‘thank you for selling cheap,’ as El Salvador buys more Bitcoin

President Bukele says ‘thank you for selling cheap,’ as El Salvador buys more Bitcoin

by admin
July 1, 2022
0

On July 1, President Bukele tweeted that El Salvador had bought another 80 Bitcoin (BTC) at $19,000 per token....

El Salvador, Unfazed By The Bear Market, Buys 80 Bitcoin – Will Others Do The Same?

El Salvador, Unfazed By The Bear Market, Buys 80 Bitcoin – Will Others Do The Same?

by admin
July 1, 2022
0

El Salvador’s president and Bitcoin fanatic, Nayib Bukele, doubled down on his country’s sinking investment in the cryptocurrency by...

What’s next for Bitcoin as market sentiment sours?

What’s next for Bitcoin as market sentiment sours?

by admin
July 1, 2022
0

Recent market volatility pushed Bitcoin below $20,000, marking the first time in its history it had sunk lower than...

CFTC charges Mirror Trading International with alleged fraud of $1.7 billion worth of Bitcoin

CFTC charges Mirror Trading International with alleged fraud of $1.7 billion worth of Bitcoin

by admin
July 1, 2022
0

The Commodity Futures Trading Commission (CFTC) has charged Cornelius Johannes Steynberg and his company Mirror Trading International (MTI), with...

POPULAR NEWS

4 Cryptocurrency that Blow Bitcoin Out of the Water

4 Cryptocurrency that Blow Bitcoin Out of the Water

September 25, 2020
Memoriae – Next Generation of Decentralized Cloud Storage Based on Blockchain

Memoriae – Next Generation of Decentralized Cloud Storage Based on Blockchain

July 1, 2021
Apollo CBDC: The CBDC Platform that can Power Economies

Apollo CBDC: The CBDC Platform that can Power Economies

October 6, 2020
Stratus: The Most Feature Rich Social Media Network

Stratus: The Most Feature Rich Social Media Network

September 9, 2020
Binance Coin (BNB) erupts above $270 as the whole Smart Chain ecosystem soars

Binance Coin (BNB) erupts above $270 as the whole Smart Chain ecosystem soars

February 19, 2021

EDITOR'S PICK

Brazilian Crypto Unicorn 2TM Lays Off Over 80 Employees

Brazilian Crypto Unicorn 2TM Lays Off Over 80 Employees

June 3, 2022
Fed Chair Powell’s Flexible Inflation Views Were Already Priced In

Federal Reserve Now Targets Inflation Above 2%, Bitcoin Breaks $11k

September 16, 2020
Elvantis Introduces a Metaverse-inspired NFT Game That Rewards Players with Crypto

Elvantis Introduces a Metaverse-inspired NFT Game That Rewards Players with Crypto

February 1, 2022
Bitcoin Halving, Explained

Bitcoin, Ethereum, Crypto News and Price Data

October 12, 2021

About

We publish a comprehensive news feed covering all news relevant to the crypto user, covering main industry news, politics and regulation as well as consumer-level “news you can use” (practical stuff), including handy DIY tips, links to useful tools, unbiased reviews and opinions revolving around cryptocurrency. Simple logic and real-world examples are preferred before technical jargon and personal rants.

Follow us

Categories

  • Altcoin
  • Bitcoin
  • Blockchain
  • Cryptocurrency
  • Ethereum
  • Litecoin
  • Market
  • Press Release
  • Regulation
  • Uncategorized

Recent Posts

  • El Salvador compra 80 bitcoins adicionales a $19K cada uno, según el presidente Bukele
  • BlockFi’s Fire Sale Shows the Uber Startup Model Is Disastrous for Finance
  • Crypto Mining Stocks Have Huge Upside, Says DA Davidson as It Slashes Hashrate Forecasts
  • So You Want to Be a Bitcoin Developer?
  • About Us
  • Privacy Policy
  • Contact Us

© 2020 cryptomustar.com

No Result
View All Result
  • Home
  • Altcoin
  • Bitcoin
  • Ethereum
  • Litecoin
  • Cryptocurrency
  • Blockchain
  • Regulation
  • Market
  • Prices
  • ICO

© 2020 cryptomustar.com

  • YAM v2YAM v2(YAMV2)$4.70-1.41%
  • yfBetayfBeta(YFBETA)$4.27-0.10%
  • IDLEIDLE(IDLE)$1.44-12.39%
  • WPP TokenWPP Token(WPP)$0.006826-3.49%
  • DSLA ProtocolDSLA Protocol(DSLA)$0.003681-6.85%
  • lympoLympo(LYM)$0.004392-4.43%
  • Werewolf CoinWerewolf Coin(WWC)$0.098082-2.58%
  • PolkaBridgePolkaBridge(PBR)$0.439784-6.92%
  • Dev ProtocolDev Protocol(DEV)$1.76-16.14%
  • EvidenZEvidenZ(BCDT)$0.122949-3.85%