On April 9, Bitcoin wallet service company Electrotum was attacked by hackers, causing user funds to be lost. In response to this attack, Beosin Chengdu Chainan made an analysis: this time the wallet Electrum was attacked, mainly because the kivy framework used is the standard py compiler and the wallet is not protected against secondary packaging. The core file can be directly Decompile back to the py file. The attacker can directly copy the code that steals the user's password and the secret key in the way of the code, and then cooperate with other attacks to entice the user to install the wallet with the malicious code, thereby stealing the user's password, key, etc. Sensitive information.