Phishing Attack on Electrum Wallet Nets Hacker Almost $1 Million in Hours: Report

Published at: Dec. 27, 2018

A reportedly ongoing hack against cryptocurrency wallet Electrum has seen a malicious party steal almost 250 Bitcoin (BTC) (about $937,000), commentators reported on social media Dec. 27.

Subsequently confirmed by Electrum itself, the attack consists of creating a fake version of the wallet that fools users into providing password information.

“The hacker setup a whole bunch of malicious servers,” Reddit user u/normal_rc explained:

“If someone's Electrum Wallet connected to one of those servers, and tried to send a BTC transaction, they would see an official-looking message telling them to update their Electrum Wallet, along with a scam URL.”

Affected users report trying and failing to log in to their wallets after providing their two-factor authentication code — something Electrum does not in fact request during login. The hackers then empty the wallet balance.

“[W]hen I logged on it immediately asked me for my 2 factor code which I thought was a little strange as well as Electrum usually only asks for that when you attempt to send,” one victim continued in another Reddit post, adding:

“I kept trying to send and kept getting an error code ‘max fee exceeded no more than 50 sat/B [satoshis per byte]’ I then restored my wallet on a separate pc and found that my balance had been transferred out in full[.]”

According to u/normal_rc, several addresses are feeding into one main holding address, which currently contains 243 BTC.

Electrum posted about the incident on Twitter today, stating “[t]here is an ongoing phishing attack against Electrum users” and implored users to check the validity of the resource they were logging into.

“Our official website is https://electrum.org[.] Do not download Electrum from any other source,” the tweet continued.

Wallet hacks are less frequent than those afflicting online exchanges, several of which — most notoriously Japan’s Coincheck — have lost users hundreds of millions of dollars in 2018.

Tags
Related Posts
Another Electrum user is claiming that their coins were stolen
Details of a previous Electrum wallet hack surfaced following the massive 1,400 Bitcoin (BTC) theft that hit headlines a few days ago. "I had a similar situation 2 months ago," a Github user named Cryptbtcaly posted on the social media platform on Aug. 31. The user claimed someone pilfered 36.5 BTC from one of their wallet addresses. The BTC reportedly ended up spread across five different addresses. "Some of the stolen Bitcoin went to Binance, but they ignore my appeals and do not return," cryptbtcaly added. Details of a larger hack surfaced on Aug. 30, when a different Githubber reported …
Bitcoin / Sept. 1, 2020
Bitfinex hackers move another $30M in stolen Bitcoin from 2016
Bitcoins (BTC) stolen from major cryptocurrency exchange Bitfinex back in 2016 are on the move again, as hackers shift another massive batch of funds to unknown wallets. According to data from crypto transaction tracking service Whale Alert, Bitfinex hackers moved more than $4.6 million in stolen BTC on Oct. 8. These funds were sent to unknown wallets in two separate transactions of 435 BTC and 8 BTC. But the hackers have moved far more than this amount earlier this week. According to Whale Alert, Bitfinex hackers completed seven more similar transactions on Oct. 7, totaling at 2,900 Bitcoin, or $26.4 …
Bitcoin / Oct. 8, 2020
Bitcoin Cash Faces ‘Slow Death’ After Alleged $30M Hack — Commentator
Altcoin Bitcoin Cash (BCH) has become the subject of intense speculation after a major investor claimed he lost $30 million in a wallet hack. In a now-deleted Reddit post from Feb. 22, the investor, who appears to be Dreamhost founder Josh Jones, said the attacker also stole 1,500 Bitcoin (BTC) worth $14.4 million. Hacker steals reported $45M The hack came in the form of Jones’ SIM card being compromised. So far, he has not confirmed whether this was a so-called “SIM swap,” or whether the funds were commandeered by other means. In the deleted post, Jones appealed to BCH miners …
Bitcoin / Feb. 22, 2020
Electrum Will Support Bitcoin Lightning Network, Wallet’s Creator Reveals
Bitcoin (BTC) wallet Electrum will soon host support for the Lightning Network (LN), Russian cryptocurrency news outlet Forklog reported on Telegram July 5. In a social media update, the publication said founder Thomas Voegtlin had revealed the upcoming release at the ongoing BIP001 conference in Odessa, Ukraine. Electrum, one of the oldest bitcoin wallets on the market since 2011, said LN functionality would come as part of an impending major upgrade. The most recent version of the wallet came earlier this week. Electrum will be one of the first major wallets to bring LN to the mainstream, the technology itself …
Bitcoin / July 5, 2019
‘Free Bitcoin’ Scam Propagated on YouTube Steals Crypto via Clipboard Hijacking
The Qulab information-stealing and clipboard hijacker trojan is being propagated on YouTube via fraudulent videos about an allegedly free bitcoin (BTC) generator, BleepingComputer reports on May 29. According to the report, security researcher Frost reached out to BleepingComputer about the trojan scam, saying that YouTube would take down the fraudulent videos when reported, but new accounts and videos would subsequently pop up with the same MO. The videos reportedly describe a tool that lets users earn free bitcoin, with a link in the video description. The links then direct to a download for the alleged tool, which is the Qulab …
Bitcoin / May 29, 2019