VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
▰ METHOD
Undisclosed
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
GitHub user "1400 BitcoinStolen" said that a huge amount of his Bitcoin money had disappeared in the hack. This user uses a bitcoin purse Electrum, the user has no security update the software, so when he transfers the currency, it prompts to update and fix potential problems, but when he according to tip operation, the software takes advantage of a vulnerability to connect the hacker server, 1400 bitcoins (worth $16 million) is placed into the hacker's wallet. Attack method (per SlowMist): Fake software update. Reported loss: $ 16,000,000.
Primary source
https://www.coolwallet.io/1400-bitcoins-btc-stolen-from-an-outdated-electrum-wallet/ ↗Sourced from
slowmist
Technical record
- chain
- bitcoin
- protocol
- Electrum
- bug_class
- unknown
- date_occurred
- 2020-08-30
- loss_usd
- $16,000,000
- source_id
- sm:electrum::2020-08-30
Related — same bug class