Bitcoin Electrum Wallet Attacked, Hacker Steals 200 BTC

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Nearly $1M In Bitcoin (BTC) Stolen

electrum-error-message.png

An anonymous hacker (or consortium of hackers) have purportedly stolen nearly $1 million worth of Bitcoin (BTC), reports technology media outlet ZDNet. Per the report, the Electrum Wallet, a popular open-source project founded in mid-June 2011, was breached in a “clever attack.”

The attack, which has since been confirmed by the team behind the venture, purportedly consisted of a false message appearing on users’ official Electrum-based applications, which beckoned consumers to visit a site.

If the link stipulated was clicked, it would lead victims to a seeming Electrum-branded GitHub repository, which contained a malicious version of Electrum that would steal consumers’ Bitcoin holdings.

This specific attack purportedly began on December 21st but was recently ended (maybe only temporarily) by GitHub admins, who purged the malicious download files. But how exactly did the attack work?

Well, as explained by ZDNet, the hacker purportedly added dozens of “malicious servers” to the Electrum network, so when a user intends to make a transaction, the hacker-backed server replies with an error message that asks users to visit the false GitHub. When downloaded, the app would request for users to input a 2FA code, which was routed to the attacker, subsequently allowing BTC to be snatched.

Electrum admins have purportedly since disallowed the message from being mostly legible, so this medium of attack is likely breathing its last breaths. Yet, the fact of the matter is that in the end, the hackers netted 200+ BTC, approximately valued at ~$740,000 at the time of writing. Other reports indicate that the attack garnered 250+ BTC for hackers, but these numbers haven’t been confirmed.

Not The First Attack On Electrum

Interestingly, this isn’t the first time that the popular wallet solution has been attacked by bad actors. Earlier this year, in early-May, the Bleeping Computer reported that the Electrum team had seen an unnamed individual/group create a copycat of their flagship product, naming it “Electrum Pro.”

The app, which closely resembled its bonafide counterpart, was exposed as a vector of attack that malicious individuals can exploit, stealing Bitcoin private keys in the process.

In a post-mortem of the attack (of sorts), which went on for upwards of two months, it was explained that there were a number of glaring red flags. Electrum Pro purportedly used Electrum’s brand and logo without permission, while also purchasing the rights for the Electrum.com domain, which was near-identical to the legitimate group’s .org domain name.

Following analysis, it was also revealed that in Pro’s code, specifically lines 223-248 of electrumpro_keystore.py, a system was integrated that allowed attackers to upload users’ keys for nefarious purposes. While the Electrum Pro attack has since been dismantled, the two aforementioned cases show how hackers are still poised to attack the cryptosphere, even amid a bear market.

10 Comments on “Bitcoin Electrum Wallet Attacked, Hacker Steals 200 BTC”

  1. It’s really a great and useful piece of information. I’m happy that you simply shared this helpful information with us. Please keep us up to date like this. Thank you for sharing.

  2. Hey would you mind letting me know which hosting company you’re using?
    I’ve loaded your blog in 3 different internet browsers and I must say this blog loads a lot quicker then most.
    Can you suggest a good internet hosting provider at a fair price?
    Thanks, I appreciate it!

  3. Hi there! This blog post could not be written any better!

    Reading through this article reminds me of my previous roommate!
    He always kept talking about this. I most certainly will forward this information to him.
    Fairly certain he’s going to have a very good read.
    I appreciate you for sharing!

  4. I do not know whether it’s just me or if everyone else experiencing issues with your website.
    It appears as if some of the text within your content are running off the screen. Can somebody else please comment and let me know if this is happening to them too?
    This could be a issue with my browser because I’ve had this happen previously. Cheers

  5. That is very fascinating, You are a very professional blogger.
    I’ve joined your rss feed and look ahead to searching for more of your excellent post.
    Additionally, I’ve shared your website in my social networks

  6. Great web site you have here.. It’s hard to find quality writing like yours these days. I honestly appreciate people like you! Take care!!

  7. Link exchange is nothing else but it is simply placing the other person’s web site link on your page at proper place and other person will also do same for you.

  8. Hi, stupen.com
    I’ve been visiting your website a few times and decided to give you some positive feedback because I find it very useful. Well done.
    I was wondering if you as someone with experience of creating a useful website could help me out with my new site by giving some feedback about what I could improve?
    You can find my site by searching for “casino gorilla” in Google (it’s the gorilla themed online casino comparison).
    I would appreciate if you could check it out quickly and tell me what you think.
    Thank you for help and I wish you a great week!

  9. This piece of writing is truly a fastidious one it helps new internet people, who are wishing in favor of blogging.

  10. Remarkable! Its really amazing article, I have got much clear idea concerning from this paragraph.

Leave a Reply

Your email address will not be published. Required fields are marked *