The attackers stole 1.4 thousand bitcoins (approximately $16.3 million) from an investor who kept the coins inwallet since 2017.
A user under the pseudonym 1400BitcoinStolen told on GitHub that he kept the cryptocurrency on the Electrum wallet, where he had not entered since the moment of purchase.
To transfer funds, he installed the oldversion of the application, but was unable to complete the transaction. In a pop-up window, he was asked to update the wallet to the latest version for security reasons. After the update, its assets were moved to the attacker's address.
The investor did not specify if he used the original version of Electrum. Users suggested that the theft was possible due to the lack of timely wallet updates.
The head of Blockstream, Adam Back, suggested that the user could connect to a malicious server, from which a notification was received about the need to update the application.
</p></p>Read this:
Developers introduced a beta version of Electrum with support for the Lightning Network
1400 BTC stolen from Electrum wallet
The number of infected Electrum wallets reached 152 thousand
Lightning Network support added to Electrum wallet
Telegram released a test version of the wallet for Gram
Fraudsters have mastered the theft of bitcoins through crypto machines using a fake QR code