link0 link1 link2 link3 link4 link5 link6 link7 link8 link9 link10 link11 link12 link13 link14 link15 link16 link17 link18 link19 link20 link21 link22 link23 link24 link25 link26 link27 link28 link29 link30 link31 link32 link33 link34 link35 link36 link37 link38 link39 link40 link41 link42 link43 link44 link45 link46 link47 link48 link49 link50 link51 link52 link53 link54 link55 link56 link57 link58 link59 link60 link61 link62 link63 link64 link65 link66 link67 link68 link69 link70 link71 link72 link73 link74 link75 link76 link77 link78 link79 link80 link81 link82 link83 link84 link85 link86 link87 link88 link89 link90 link91 link92 link93 link94 link95 link96 link97 link98 link99 link100 link101 link102 link103 link104 link105 link106 link107 link108 link109 link110 link111 link112 link113 link114 link115 link116 link117 link118 link119 link120 link121 link122 link123 link124 link125 link126 link127 link128 link129 link130 link131 link132 link133 link134 link135 link136 link137 link138 link139 link140 link141 link142 link143 link144 link145 link146

Tag: bitcoin wallet

Bitcoin Wallet App Caught Stealing Seed Keys

Bitcoin Wallet App Caught Stealing Seed Keys

Bitcoin Wallet App Caught Stealing Seed Keys

The team behind Electrum, a Bitcoin wallet app, has exposed a copycat product named Electrum Pro as a malicious app that steals users' seed keys.

Electrum developers made their accusations in a document published on GitHub yesterday.

The document contains a step-by-step guide to decompiling a rival product named Electrum Pro that popped up online two months ago in March.

 

Obvious copycat is obviously malicious

The Electrum team has long suspected this is a scam product. The reasons are that the newly launched wallet app used their brand name without permission, but also registered the electrum.com domain, similar to the real Electrum domain of electrum.org, in an attempt to capitalize on the older app's reputation and trick users into using their product.

Now, Electrum devs seem to have confirmed their initial suspicions. On GitHub, the Electrum team points to a particular piece of code (lines 223-248 in electrumpro_keystore.py) where the Electrum Pro wallet appears to take the user's wallet seed key and upload it to the electrum.com domain.

Wallet seed keys are cryptographic keys that allow the owners of a wallet app to access the funds of multiple Bitcoin addresses stored in a particular wallet.

With the seed keys uploaded to electrum.com, the owners of those domains have the ability to use these seed keys and empty Bitcoin accounts

According to Electrum devs, creating or restoring a wallet with Electrum Pro will send copies of the users' wallet seed keys to the electrum.com domain.

Seed key theft seen in Windows and macOS binaries

"We previously warned users against 'Electrum Pro', but we did not have formal evidence at that time," Electrum devs said.

Devs also said they've only analyzed Electrum Pro's "electrumpro-4.0.2.dmg" macOS binary and "ElectrumPro-4.0.2-Standalone.zip" Windows binary, but warned that "is safe to assume that the other Windows binaries are malicious as well."

Affected users should move funds from Bitcoin addresses they've managed via Electrum Pro. At the time of writing, there have not been any reports of stolen funds.

 

Author By Catalin Cimpanu May 10, 2018 12:30 AM
 

Posted by David Ogden Entrepreneur

Alan Zibluk Markethive Founding Member