Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Electrum 3.3.4 balance: synchronizing, cannot perform any transactions #5117

Closed
sleepyjoe36 opened this issue Feb 13, 2019 · 7 comments
Closed

Electrum 3.3.4 balance: synchronizing, cannot perform any transactions #5117

sleepyjoe36 opened this issue Feb 13, 2019 · 7 comments
Labels
phishing 🎣 For phishing websites, fake wallets and stuff like that

Comments

@sleepyjoe36
Copy link

sleepyjoe36 commented Feb 13, 2019
edited

this happend after a transaction i sent bitcoins from coinbase iOS to my laptop's electrum 3.3.4 by using the barcode on the receive address using my phone's camera. The transaction appeard first as unconfirmed and now it's confirmed. the value is visible in the list of transactions with a green checkmark however the balance is stuck on synchronizing. and I am not able to perform any further transactions
balance sync
@AbdussamadA
Copy link
Contributor

there is no version 3.3.4: https://github.com/spesmilo/electrum/blob/master/RELEASE-NOTES

looks like you installed malware.

@ecdsa ecdsa added the phishing 🎣 For phishing websites, fake wallets and stuff like that label Feb 13, 2019
@ecdsa
Copy link
Member

ecdsa commented Feb 13, 2019

you have installed malware; there is currently no version 3.3.4 of Electrum
do not enter your password in this application
please let us know where you downloaded it from

@ecdsa
Copy link
Member

ecdsa commented Feb 13, 2019

if you have not entered your password in that applicatoin, your bitcoins might not have been stolen
install the real Electrum (from https://electrum.org) on another machine, and restore your wallet from seed

@SomberNight
Copy link
Member

Note that we are actually planning to release 3.3.4 now... but what you have downloaded is not the real electrum in any case.

@vxcozy
Copy link

vxcozy commented Feb 13, 2019
edited

I have someone I'm working with who were impacted by this and claims that the 3.3.4 upgrade notice happened in-app. His 3.3.3 version was downloaded from electrum.org-->github, so Is there a chance that the upgrade server is being attacked?

@SomberNight
Copy link
Member

SomberNight commented Feb 13, 2019
edited

@Krypt1k86 there is a vulnerability in versions <3.3.3 using which when the user broadcasts a transaction, a malicious server can send back and display arbitrary text messages. See #4968 and the warning on top of electrum.org

Or are you saying he was using 3.3.3?

His 3.3.3 version was downloaded from electrum.org-->github

Please clarify

@vxcozy
Copy link

vxcozy commented Feb 13, 2019

Thanks! I'll check out that issue.

  • The customer was using 3.3.3.
  • He received a message in-app to update to 3.3.4 due to a vulnerability after trying to send a transaction.
  • clicked on the in-app link that was in the pop-up message.
  • After the upgrade from the in-app link to 3.3.4 (malicious software), although the funds were now swept, the wallet displayed as if the funds were still there and gave a message stating "Too high fee".

@ecdsa ecdsa closed this as completed Feb 15, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
phishing 🎣 For phishing websites, fake wallets and stuff like that
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@ecdsa @AbdussamadA @SomberNight @vxcozy @sleepyjoe36