|
Title: Electrum 'we now have proof Electrum Pro is malware' Post by: gentlemand on May 08, 2018, 05:48:43 PM https://twitter.com/ElectrumWallet/status/993819715855405056
I had no idea there were differing Electrums battling it out. Be careful out there, kids. In this day and age I'd be buying up every major domain imaginable before launching my project but that's often horribly expensive. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: TryNinja on May 08, 2018, 06:05:12 PM For those who are wondering, they are talking about the fake Electrum who bought the electrum (.) com domain (< FAKE).
REMEMBER: The real Electrum is only available through ELECTRUM.ORG (http://ELECTRUM.ORG) Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: adaseb on May 08, 2018, 07:52:12 PM For those who are wondering, they are talking about the fake Electrum who bought the electrum (.) com domain (< FAKE). REMEMBER: The real Electrum is only available through ELECTRUM.ORG (http://ELECTRUM.ORG) Well the fact that they bought another domain is a give a way that they will try and scam people. Almost as bad as what Bitcoin.com is doing, tricking others into buying BCH instead of BTC. Too bad they can't remove that domain under some copyright issues. I can see many people getting tricked and trusting the software from .com since it seems like a legit domain. Something should be done. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: gentlemand on May 08, 2018, 08:14:08 PM For those who are wondering, they are talking about the fake Electrum who bought the electrum (.) com domain (< FAKE). REMEMBER: The real Electrum is only available through ELECTRUM.ORG (http://ELECTRUM.ORG) Good point. I should've pointed out the real deal is .org and the interloper .com. The .com shows up a relatively long way down search results but that's not going to mean anything to a total noob. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 09, 2018, 02:08:54 AM What is this "electrum dot com" that you speak of? :P
https://talkimg.com/images/2023/11/15/zKJal.png That's the first site I've actually had this pop up on... good to know that things are working as intended :) Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: pooya87 on May 09, 2018, 02:47:05 AM In this day and age I'd be buying up every major domain imaginable before launching my project but that's often horribly expensive. that still wouldn't solve any problems. in this day and age people have to educate themselves if they want to not-lose money. even when you download Electrum from Electrum.org you have to verify the signature of the file with the right public key. or better yet you have to compile Electrum from its source code. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 09, 2018, 02:56:54 AM ... or better yet you have to compile Electrum from its source code. Last time I tried that... the Windows version just wouldn't run. No errors or anything, the .exe just failed to launch. :-\Is compiling the Windows version any easier now with V3+ or is it still relatively complicated requiring you to use Linux and Wine to compile? Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: pooya87 on May 09, 2018, 03:09:37 AM ... or better yet you have to compile Electrum from its source code. Last time I tried that... the Windows version just wouldn't run. No errors or anything, the .exe just failed to launch. :-\Is compiling the Windows version any easier now with V3+ or is it still relatively complicated requiring you to use Linux and Wine to compile? it is not easy at all specially when you are not familiar with the code and the tools used (python in this case, which i am not), i have encounters the same issues too and finally gave up! haven't tried with V3+ though. maybe i give it a go this week if i had time. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: Lucius on May 09, 2018, 09:33:24 AM I think this page should be removed as soon as possible because otherwise many users will stay without theirs BTC.The site looks pretty good and the fact that there is a com domain will deceive many potential users of Electrum.I do not know if reporting this site to Google Safe Browsing (https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en) can help,but it is better to report then do nothing.
Stay away from this site-it is fake Electrum and you BTC will be stolen! Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 09, 2018, 10:25:27 AM Report Sent Thanks for the direct link Lucius... I probably wouldn't be rejoicing merrily right now if it wasn't just a "point and click" exercise ;)Thanks for sending a report to Google. Now that you've done your good deed for the day, feel free to: 1. Take a second to rejoice merrily for doing your part in making the web a safer place. ... For all the other Electrum "fans"... please do click the link and report this domain as a scam (https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en). Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: Abdussamad on May 09, 2018, 05:25:51 PM https://twitter.com/ElectrumWallet/status/993819715855405056 I had no idea there were differing Electrums battling it out. Be careful out there, kids. In this day and age I'd be buying up every major domain imaginable before launching my project but that's often horribly expensive. It cost too much: https://www.reddit.com/r/Bitcoin/comments/8a1drz/psa_electrumcom_bought_by_scammers_to_distribute/dwv3k10/ Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: gentlemand on May 09, 2018, 05:32:53 PM It cost too much: https://www.reddit.com/r/Bitcoin/comments/8a1drz/psa_electrumcom_bought_by_scammers_to_distribute/dwv3k10/ Interesting. I guess it would've been difficult to foresee the potential stakes in the future. Back then it would've been a cool little project and nothing else. If I were setting something up these days I'd adjust the name until I found all the necessary domains even if you wound up with Electerrrum.com. I'm regularly seeing doubts about domains these days and whether people are winding up on legit sites or not. And it's doubly odd that some of these services have to be poked into saying which is their domain and which isn't. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: hatshepsut93 on May 09, 2018, 09:07:08 PM What is this "electrum dot com" that you speak of? :P That's the first site I've actually had this pop up on... good to know that things are working as intended :) This is actually pretty cool, I guess there are some anti-phishing addons, but they are probably not very popular. So maybe a good solution would be if addons like Adblock or Ublock that are used by almost everyone, would offer additional anti-phishing feautres to report malicious site like this fake Electrum site. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 09, 2018, 11:22:24 PM Thomas & Co have released their full write-up (https://github.com/spesmilo/electrum-docs/blob/master/decompiling_guide.md) (with instructions on how to replicate) on decompiling the "ElectrumPro" Windows binary which shows how they're stealing your seeds :-\
Very interesting that this code is NOT in the Linux version (https://github.com/spesmilo/electrum-docs/blob/master/decompiling_guide.md#misc)... as mentioned in the write-up, this would have been in "plainsight" and easily detected. ElectrumPro = Confirmed Scam Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: Lucius on May 10, 2018, 08:48:45 AM Thanks for the direct link Lucius... I probably wouldn't be rejoicing merrily right now if it wasn't just a "point and click" exercise ;) For all the other Electrum "fans"... please do click the link and report this domain as a scam (https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en). You're welcome, I hope report will be of some help to remove the page as soon as possible, although Google is not exactly fast when it comes to these things. It is interesting that domain is created back in the year 1996, since then there was no BTC I wonder what was purpose of that name domain?I check Whois service and this domain is registered on GoDaddy, one more way to take down this site is report to their abuse service. Any info for how much is this domain sold?I see Thomas say back in 2012 owner ask price of one house... Quote electrum.com is already registered* Domain Name: ELECTRUM.COM Registry Domain ID: 24034_DOMAIN_COM-VRSN Registrar WHOIS Server: whois.godaddy.com Registrar URL: http://www.godaddy.com Updated Date: 2017-05-11T02:50:04Z Creation Date: 1996-05-15T04:00:00Z Registry Expiry Date: 2018-05-16T04:00:00Z Registrar: GoDaddy.com, LLC Registrar IANA ID: 146 Registrar Abuse Contact Email: abuse@godaddy.com Registrar Abuse Contact Phone: 480-624-2505 Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited Name Server: NS1.HOSTRESOLUTION.COM Name Server: NS2.HOSTRESOLUTION.COM DNSSEC: unsigned URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/ >>> Last update of whois database: 2018-02-21T15:56:57Z <<< Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: European Central Bank on May 10, 2018, 11:25:31 AM It is interesting that domain is created back in the year 1996, since then there was no BTC I wonder what was purpose of that name domain?I check Whois service and this domain is registered on GoDaddy, one more way to take down this site is report to their abuse service. Electrum has been a thing since alloys have existed, nothing to do with btc. I guess it was bought up during a domain splurge. Those early adopters must be making millions from leasing their domains. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: Abdussamad on May 10, 2018, 12:42:43 PM If you read that thread I posted above you will see that the domain was in use by a legit company in an unrelated industry. It is only in the last few weeks that the scammer acquired it from them.
Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: jackg on May 10, 2018, 04:39:58 PM It is interesting that domain is created back in the year 1996, since then there was no BTC I wonder what was purpose of that name domain?I check https://www.google.com/search?q=electrum+definition Electrum as the word is a composite containing gold or silver. Probably a cheap jewelry market or something as it does come from that origin. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: jackg on May 10, 2018, 05:06:24 PM Let's go on a journey through time, since it was asked in a pervious post.
Previous uses of electrum.com: 08-05-1999 (https://web.archive.org/web/19990508223114/http://www.electrum.com:80/) 26-03-2003 (https://web.archive.org/web/20030326180312/http://electrum.com:80/) - I don't think that site was ever fully constructed 18-08-2007 (https://web.archive.org/web/20070818051557/http://www.electrum.com:80/) 13-10-2008 (https://web.archive.org/web/20081013220353/http://electrum.com:80/) 26-09-2012 - an energy drink! (https://web.archive.org/web/20120926065427/http://electrum.com:80/) 03-10-2016 BITCOIN!!! (https://web.archive.org/web/20161003200052/http://electrum.com/) FAKE ELECTRUM (https://web.archive.org/web/20180406061249/https://www.electrum.com/) Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 10, 2018, 10:46:13 PM I like how they attempt to legitimise their fork:
Quote IMPROVE YOUR BITCOIN EXPERIENCE Electrum has been securing payments since 2011 and is one of the most popular Bitcoin wallets. ElectrumPro is free software, released using the MIT license. Anyone can run an Electrum server. No single entity controls the network. Electrum v. ElectrumPro... Technically accurate... But a bit misleading. Less savvy users likely to think ElectrumPro has been around since 2011 :-\ Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: European Central Bank on May 11, 2018, 01:28:36 AM https://www.reddit.com/r/Bitcoin/comments/8ig4bh/electrum_pro_is_not_bitcoin_stealing_malware_as/
Looks like they've exit scammed and blamed the real electrum for it too. Classy guy. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: HCP on May 11, 2018, 02:11:15 AM Quote Due to false accusations from electrum.org, they have ruined our reputation and brand of Electrum Pro. They managed to trick several news outlets to slander us. If they were false accusations... and it was truly slander... wouldn't they just take Thomas (and/or "Electrum Technologies GmbH") to court? ??? Ohhhhh that's right... it would actually have to be a factual claim... not the desperate claims of a scammer who got caught red-handed :P ::)I love how they think deliberately stealing seeds is the same as a security flaw in code... ::) also... 25BTC for a domain? BARGAIN! I'll take two! :P Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: Lucius on May 11, 2018, 09:04:34 AM So this story ended pretty fast, at least as to the fact that the page is no longer online which is actually the most important thing.Now it's just a matter of domain, who will buy it and for what purpose.
I have to admit that it is a little strange that someone is investing significant resources in project like this, and that he did not consider that he will be very quick discovered and in just a few days to finish like this.Is it only the ignorant and amateur work or it may be something else? Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: jackg on May 11, 2018, 07:32:45 PM Quote Due to false accusations from electrum.org, they have ruined our reputation and brand of Electrum Pro. They managed to trick several news outlets to slander us. If they were false accusations... and it was truly slander... wouldn't they just take Thomas (and/or "Electrum Technologies GmbH") to court? ??? Ohhhhh that's right... it would actually have to be a factual claim... not the desperate claims of a scammer who got caught red-handed :P ::)I love how they think deliberately stealing seeds is the same as a security flaw in code... ::) also... 25BTC for a domain? BARGAIN! I'll take two! :P That's true. If it came from Thomas himself it would be cryptographically signed and he could therefore be prosecuted for false advertising and producing malware. However, this is OBVIOUSLY NOT the case here. And 25btc for a phishing domain is quite pricey especially since it will probably be blacklisted by a lot of people. Anybody have the public keys, IPs, companies they used like things for anti-ddos and any registrar info. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: BitcoinSupremo on May 11, 2018, 07:40:28 PM Quote Due to false accusations from electrum.org, they have ruined our reputation and brand of Electrum Pro. They managed to trick several news outlets to slander us. If they were false accusations... and it was truly slander... wouldn't they just take Thomas (and/or "Electrum Technologies GmbH") to court? ??? Ohhhhh that's right... it would actually have to be a factual claim... not the desperate claims of a scammer who got caught red-handed :P ::)I love how they think deliberately stealing seeds is the same as a security flaw in code... ::) also... 25BTC for a domain? BARGAIN! I'll take two! :P That's true. If it came from Thomas himself it would be cryptographically signed and he could therefore be prosecuted for false advertising and producing malware. However, this is OBVIOUSLY NOT the case here. And 25btc for a phishing domain is quite pricey especially since it will probably be blacklisted by a lot of people. Anybody have the public keys, IPs, companies they used like things for anti-ddos and any registrar info. There is a good comment in the reddit false accusation against the real Electrum which caught my attention. Some guy was replying that why are you blatantly scamming or did your fake scam investment got out too soon and you missed even ROI because .com domain and DDOS. 25 BTC is really a lot. What I wonder though is how far can a human being go to scam other human beings. That is the real sad part of our society. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: European Central Bank on May 11, 2018, 07:42:44 PM 25 BTC is really a lot. according to that linked reddit thread the (real) electrum guys said that the electrum.com domain owner was asking the price of a house in 2012. 25 btc wouldn't buy much of a house in many places these days. i'd be very interested to know how this guy got his hands on the domain especially since it should be worth more than it was in 2012, not less. Title: Re: Electrum 'we now have proof Electrum Pro is malware' Post by: jackg on May 11, 2018, 08:21:17 PM 25 BTC is really a lot. according to that linked reddit thread the (real) electrum guys said that the electrum.com domain owner was asking the price of a house in 2012. 25 btc wouldn't buy much of a house in many places these days. i'd be very interested to know how this guy got his hands on the domain especially since it should be worth more than it was in 2012, not less. There are houses that are on the market for $200000 which is probably about 25 bitcoin. I wouldn't be annoyed if someone were to tip me that amount either :D... |
