Several weeks ago a few users of the popular bitcoin desktop wallet Electrum reported loss of their bitcoin after downloading a malicious versions of software.
The scammers were able to infect Electrum servers to broadcast messages to users of older versions of the software. The message would trick users into downloading the malware. Recent releases of Electrum are able to prevent the messages from being broadcast by the compromised servers, but users who are still using versions prior to 3.3.3 are still vulnerable.
I'm posting this here to help bring awareness to the issue. If you are using an older version of Electrum it is recommended you upgrade to the latest version.
Only download Electrum from the official website:
https://electrum.org/Don't forget to check the signature.
More information can be found here:
https://github.com/spesmilo/electrum/issues/4968Originally the scammers directed victims to download the malware from the impostor's github repository, but github has since shut down the scammers account. However it appears the scammer is still attempting to take advantage of the vulnerability by now directing his potential victims to a new site for downloading the malware.
Warning: Do not visit the site listed blow. It is displayed only for your reference.https://electrumdownload.com/
