As a result, the “sophisticated” DoS attacks against the servers of the popular Electrum Bitcoin Wallet, which have been going on for about a week, users have already lost “millions of dollars”. The Next Web reports it with the reference to the statement of an unnamed security expert.
Earlier, representatives of Electrum confirmed the fact of the attack, but did not make any statements regarding the possible loss of users.
Electrum servers are currently under a DoS attack. We are working on a more robust version of the electrum server. In the meantime, affected users should disable auto-connect, and select their server manually.
The Next Web, meanwhile, writes that more than 140,000 bots lead the attack, which redirect users to fake versions of Electrum.org, where they are offered to upgrade to a new version of the software. When downloading and installing it, bitcoins are stolen.
Fake Electrum Website Message
The publication also quotes a cyber security expert who wished to remain anonymous, who says that the attack began about a week ago and is happening at a completely new level, sending up to 25 GB of traffic per second to Electrum servers.
In addition, the expert said, according to the analysis, the damage from the actions of hackers has already exceeded several million dollars, and one individual user lost $140k worth Bitcoins.
The situation was also commented by leading Electrum developer Thomas Vogtlin. According to him, the Electrum team hopes to solve the problem "in the coming hours or days." At the same time, he noted that users who have not updated their wallet version for a long time are at particular risk.
For security reasons, Electrum has disconnected software older than version 3.3 from public servers and recommends downloading the application only from electrum.org, as well as establishing a connection to servers in manual mode.
This is not the first time in recent times when Electrum users lose money as a result of hacker actions. So, in December, an unknown attacker stole Bitcoins from Electrum users with help of phishing attack via many malicious servers. The estimated damage from his actions was about 200 BTC.