Topic: ✅ Detailed explanation of hacked myetherwallet.com information on 24/4/2018 ✅ (Read 94 times)

The fact that myetherwallet.com (temporarily referred to as an Ether ecosystem) has been hacking has been spreading pretty fast on websites since last night, causing the community to be puzzled and not knowing how to handle or prevent it. How to secure your wallet, here are some blogtienao information to summarize and explain things to people to understand, avoid the bewilderment to affect psychology.


SUMMARY OF MYTHERWALLET.

The fact is not myetherwallet (MEW) hacked but this is a fraudulent activity to get the private key of the login through the form called highjacked.

You understand that each time you visit a website (For example, vnexpress.net) under the internet system, the domain name vnexpress is just the external address display, in fact, you have access to an IP. via DNS (for example, IP: 111.65.248.132) each site at a time is only one IP and it is secure and then you will have access to the server that contains data of vnexpress and read and interact with vnexpress .

The same is true of MEW (myetherwallet.com). However, yesterday was a situation where someone cheated by changing the IP address of MEW on Google DNS, ie when you still typed myetherwallet.com but it did not lead you to it. The correct IP of your mytherwallet that leads you to another IP address has another server, you still see the interface, mytherwallet.com domain as usual (the only difference is that it does not have the blue SSL security key on the side. domain like this.





This is to confirm that you have logged in the correct IP of the site you want to visit.

When you click on that, it appears in the table like this (in the Certificate it has to Vaild is confirmed)


Then click Certificate, and it will display a certificate like this which has a blue tick " this certificate is valid " that you have logged into the secure IP.



Yesterday the rogue hackers group led the user by logging in to myetherwallet.com to another IP through Google DNS.

If you are actually on another site and not on myetherwallet, when you enter a private key or login with a password on this interface, you are invisible to provide acc and pass to scammers and they have Have your information secure, they will use that information to log into mylllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllll lllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllllll

When it comes to a fake IP, the SSL will say it's not certified like this.


Check that the address is still valid, except that it is not verified, you see the green tick before it has specified " This root certificate is not trusted "

So, yesterday's issue of myetherwallet.com was not that they were hacked into the site they were being deceived by someone who tricked you into a fake website while you were pointing to the real IP, how they used it. That interferes with your transmission line to lead you to a fake IP address.

This situation occurs when you use Google DNS on your computer instead of using the default DNS (usually there are blocked outbound firewall instructions or something else that still tells you to change DNS to Google DNS 8.8.4.4. It is one of those instances where you have changed the default DNS and computer line, thieves can use this way to "spoof your transmission line.")

HANDLING MANUAL.

When logging in to myetherwallet.com account (or any website related to money / email account) YOU MUST SELECT one thing to always look at the SSL box next to the domain name it SHOWS GREEN PLANT as shown under, ie it has been verified as a secure address.


Once you've entered the correct blue verification address then following the login step for even more safety, just login by connecting to the offline wallet by clicking on MetaMask / Mist or Ledger Wallet, Trezor. Do not log in by selecting Private Key and typing 12 or 24 characters of your private key. As shown below


When you check the content as above, then you log as comfortable as normal will not matter at all.

HIGH PRICING ON SECURITY ACCOUNT.

Always be careful in  ALL ACCEPTED LOGINS  . If it is not blue or there is a bug in it that it does not confirm then  EXPRESSLY DO NOT  log in or interact on that site, even if its display is the same as every day or every other " real "

In cryptocurrency it is always preferable to use offline (Ledger Waller, Trezor, ...) or offline intermediaries like Metamask, generally the wallet that you keep the private key and every time you log in you do not have to enter private key to ensure that if hackers have your hack, they also do not have full control over the login and use of your account.

And finally, more than anyone else, always find out for yourself in multiple sources and take self-defense for account security. Do not believe and follow all the instructions on the net and do not use any crack software on the computer you use to log into the account.

Wish you luck and never hack account!