Users of cryptocurrency wallets Electrum and MyEtherWallet have been receiving phishing emails, that attempt to obtain sensitive data like users’ personal or banking information by illicit means.
Under a phishing attack, the attacker disguised as a trusted entity and sends the user a message or an email that contains a malicious link. As and when the user clicks on the link, they either asked to enter their personal data or new window initiates the installation of malware.
When a Reddit user, exa61 discovered that a phishing scam was posing as a security update in an attempt to steal sensitive data from Electrum customers. The user brought the matter into the forefront by posting the picture of a system message, allegedly from Electrum wallet.
The system message asks the user to make a security update to Electrum 4.0.0. However, the platform does not have any 4.0.0 version, its latest and current version of the wallet is Electrum 3.3.3. The platform took to Twitter, informing its users about the scam.
The latest version of Electrum (version 3.3.3) will notify users when a new release of Electrum is available. Release announcements are signed by us, and verified by Electrum using a hardcoded Bitcoin address. This feature is optional and can be disabled. https://t.co/Y2DXoUyOgk
— Electrum (@ElectrumWallet) January 26, 2019
MyEtherWallet took also their Twitter account and warned their followers about a phishing email that was sent to users.
“versions of Electrum older than 3.3.3 are vulnerable to a phishing attack, where malicious servers are able to display a message asking users to download a fake version of Electrum.”
Read more: 20-Year Old Hacker Pleads Guilty To $5 Million Crypto Theft, Gets 10 Years In Prison
Keep in mind that we may receive commissions when you click our links and make purchases. However, this does not impact our reviews and comparisons. We try our best to keep things fair and balanced, in order to help you make the best choice for you.