Difference between revisions of "Electrum"

From CryptoWiki

m (1 revision imported)
 
Line 1: Line 1:
Well known Bitcoin [[Wallet]].
== Basics ==


Has [https://cryptotickerr.us17.list-manage.com/track/click?u=6fd84371154acc769ed5664bc&id=bafb103ed1&e=b9fac0945e revealed] that a phishing attack on its network has possibly managed to steal around [[Bitcoin (BTC)|₿]]245; wallet users that connected to Electrum servers were redirected to fake servers as they attempted to broadcast a Bitcoin [[Transaction (Tx)|transaction]], they received an error message providing a malicious link to malware disguised as an updated wallet 
* Well known [[Wallet]].
 
== Audits & Exploits ==
 
=== Bugs/Exploits ===
 
* [https://newsletter.blockthreat.io/p/blockthreat-week-23-2022 From] Blockthreat (17-6-2022):
 
''"Electrum Wallet and its [[Fork|forks]] fixed a url injection [https://github.com/spesmilo/electrum/security/advisories/GHSA-4fh4-hx35-r355 vulnerability] which could allow leaking of SMB [[tokens]] thanks to a responsible disclosure by Frank Davidson."''
 
* Has [https://cryptotickerr.us17.list-manage.com/track/click?u=6fd84371154acc769ed5664bc&id=bafb103ed1&e=b9fac0945e revealed] that a phishing attack on its network has possibly managed to steal around [[Bitcoin (BTC)|₿]]245; wallet users that connected to Electrum servers were redirected to fake servers as they attempted to broadcast a [[Bitcoin]] [[Transaction (Tx)|transaction]], they received an error message providing a malicious [[LINK|link]] to malware disguised as an updated wallet 


[[Category:Companies/Organisations]]
[[Category:Companies/Organisations]]

Latest revision as of 02:37, 1 August 2022

Basics

Audits & Exploits

Bugs/Exploits

  • From Blockthreat (17-6-2022):

"Electrum Wallet and its forks fixed a url injection vulnerability which could allow leaking of SMB tokens thanks to a responsible disclosure by Frank Davidson."

  • Has revealed that a phishing attack on its network has possibly managed to steal around 245; wallet users that connected to Electrum servers were redirected to fake servers as they attempted to broadcast a Bitcoin transaction, they received an error message providing a malicious link to malware disguised as an updated wallet