hi surry for the dump question but i wont to know if its possible for a hacker if he did hack electrum.org website and put his fake electrum version
but he kept the original signature file in this case even if you verified the signature file you will lose your btc since the hacker kept the original file
and only changed the electrum.exe file to his fake version
but he kept the original signature file in this case even if you verified the signature file you will lose your btc since the hacker kept the original file
and only changed the electrum.exe file to his fake version
In this case, you need to pay attention to the Electrum developer's original signature.
If the Electrum website is hacked and all wallet files, including the previous developer's signature, are changed, you should be wary of it.
However, suppose only the wallet file is changed while the developer signature is still from the original Electrum developer. When you try to verify it, you will get the message 'BAD signature...' and it is recommended that you do not use the wallet file.
Below are two examples of GPG signature verification results that I have made;
- Original Electrum files:
-snip-
- Fake Electrum files:
-snip-
