Crypto Wallet Electrum Pro Caught Red-Handed
Crypto wallet Electrum Pro sends cryptographic keys of users to a third-party domain
Developers of the bitcoin-wallet Electrum warned users about the malicious "clone" of the wallet. The document published on GitHub provides step-by-step instructions on the decompilation of the controversial application.
Electrum’s team suspected something after Electrum Pro emerged in March 2018, because the name of their product was used illegally. In addition, the malefactors registered the domain electrum.com that is quite similar to the real domain of Electrum - electrum.org.
However, as it turned out, the malefactors went beyond using a famous brand name for their benefit. Developers of the original wallet decompiled Electrum Pro and found the code responsible for obtaining cryptographic keys of users and transferring them to electrum.com. These keys provide access to crypto wallets, and it becomes quite easy to steal the money.
According to the developers at Electrum, when a user creates or restores their wallet through Electrum Pro, the application sends his cryptographic key to electrum.com.
One question is left unanswered: why the developers of Electrum hadn’t addressed the cybersecurity company at once when the fake domain was created? Don’t they know that even a single phishing email can cost $1.9 million? In 2017, Chainalysis found that phishing domains were responsible for more than 50% of all cybercrime revenue, which is, by the way, amounted to between 1 and 5 million U.S. dollars.
Although no reports of stolen funds from Electrum Pro have been received at the moment of this publication, the risk is still on. Responsible companies that do care about clients and own reputation, order anti-phishing services.
Leave Crypto Wallet Electrum Pro Caught Red-Handed to:
Read more #cryptowallet posts
Best Posts From The Hacken Ecosystem
We have not curated any of hacken's posts yet. But you can encourage our curation team to review posts by visiting them regularly and by referring other readers. Because we give priority to frequently read content.
More Posts From The Hacken Ecosystem
- Transparency Hacking Initiative: New Crowdsourced Framework for Crypto Exchange Transparency
- Does Crypto Have KYC
- Phishing of Crypto Hodlers, Traders, and Stock Exchanges
- More than just a Data Breach: a Democratic Fundraising Firm Exposure
- Investigation on fake trade volume of top crypto exchanges: BigONE
- The Butterfly Effect or how to counter fake volumes and make the crypto industry mature
- Hola VPN was hacked: keep your data safe
- CER Prelaunch Giveaway Results are Live
- Q&A session with Dmytro Budorin: community questions. Part 2
- CER Prelaunch Giveaway