MyEtherWallet Succumbs to DNS Attack with $ 17 million stolen - page 4.

Periodik

sr. member

Activity: 1022

Merit: 256

Quote from: RothsCoin on April 25, 2018, 12:41:54 AM

Popular Ethereum wallet interface MyEtherWallet has succumbed to a DNS hijacking attack that allowed a hacker to redirect users to a malicious version of the website.

The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading on the Reddit forum. The attacking IP address seems to come from Russia. At the time of writing, 25,000 ETH ($ 17 million) has been stolen.

It is highly recommend that everyone be careful when using the MEW wallet and follow the security instructions by MEW wallet. In other words, you are advised to integrate Metamask into login and make direct transactions via Metamask. If you want to check your balance, visit https://etherscan.io/, which means you do not have to log into MyEtherwallet.com anymore, so you will avoid the hidden potential risk here.

Rothscoin team.

Hackers are everywhere these days. And many of them are going into the world of cryptocurrency, knowing that there is so much money in there. This is not a good incident. This might cause potential cryptocurrency investors to once again question the safety measures used by cryptocurrency wallets, especially online ones.

CryptoTech_

full member

Activity: 994

Merit: 106

Official Street Team member

very sad to hear this news, and this also makes the price of ETH and token-based ETH directly experienced a very drastic price decline, whereas in the last day everything is still up Cry

one thing I want to ask, when will myetherwallet return to normal? or even never will?

Lambido

newbie

Activity: 27

Merit: 0

this is crazy

Caladonian

hero member

Activity: 1302

Merit: 540

It's really a bad day for those owners of this alleged hacked, its been noticed even before that MEW got this problem and to makes sure that you
have some extra security better not to open a website manually, they advise to bookmarked the site and make sure that private keys and those extra
securities already been set up, those hackers are just around waiting for the next target.

frommolo

newbie

Activity: 69

Merit: 0

Wow, it's already 17mln$, I read about it but it was absolutely another amount, if I don't mistake only about 150.000$.

Angel0

newbie

Activity: 112

Merit: 0

So sad to hear, and at least they could trace the hacker if possible but I think they need the help of the government to do so.

But nice for them to have initiative to do some action like checking your coin with our logging to your MEW that really cause phising when you open the wrong site.

jhenz20

jr. member

Activity: 321

Merit: 1

I saw also the tweet of Mew about this problem and i feel sorry for those victims who got scammed. And i am also afraid about this because some of my token got a big price in the market. I did not open my MEW because I'm so scared that my token will got stolen. We all know that we are not all secured, so don't make a move or access some unknown website. And thanks for this topic because i got an idea about the news of MEW.

JeffBrad12

hero member

Activity: 2898

Merit: 529

Leading Crypto Sports Betting & Casino Platform

Quote from: RothsCoin on April 25, 2018, 12:41:54 AM

Popular Ethereum wallet interface MyEtherWallet has succumbed to a DNS hijacking attack that allowed a hacker to redirect users to a malicious version of the website.

The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading on the Reddit forum. The attacking IP address seems to come from Russia. At the time of writing, 25,000 ETH ($ 17 million) has been stolen.

It is highly recommend that everyone be careful when using the MEW wallet and follow the security instructions by MEW wallet. In other words, you are advised to integrate Metamask into login and make direct transactions via Metamask. If you want to check your balance, visit https://etherscan.io/, which means you do not have to log into MyEtherwallet.com anymore, so you will avoid the hidden potential risk here.

Rothscoin team.

This shit about how you are spreading a referral link to your site and take the advantage by made fake result regarding how amount that has been stolen by the hacker.
This is the hacker's address 0x1d50588C0aa11959A5c28831ce3DC5F1D3120d29, and the hacker is about stealing around $150,000 and 17 million dollars just a bullshit thing.

yazher

hero member

Activity: 2184

Merit: 585

You own the pen

i feel bad for this guys who got scammed they work hard for their ETH and all of a sudden it just got scammed by some bad guys. and i see the ETH price is dropping right now maybe because of this people shame on them.

jpucela14

sr. member

Activity: 357

Merit: 251

SWISSREALCOIN - FIRST REAL ESTATE CRYPTO TOKEN

They always warned that Keystore and seed phrase was not a secure way to access the wallets so I don't think this is a big surprise. If you accessed with a TREZOR or Ledger you should be okay.

feny.blackpink

newbie

Activity: 196

Merit: 0

Quote from: RothsCoin on April 25, 2018, 12:41:54 AM

Popular Ethereum wallet interface MyEtherWallet has succumbed to a DNS hijacking attack that allowed a hacker to redirect users to a malicious version of the website.

The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading on the Reddit forum. The attacking IP address seems to come from Russia. At the time of writing, 25,000 ETH ($ 17 million) has been stolen.

It is highly recommend that everyone be careful when using the MEW wallet and follow the security instructions by MEW wallet. In other words, you are advised to integrate Metamask into login and make direct transactions via Metamask. If you want to check your balance, visit https://etherscan.io/, which means you do not have to log into MyEtherwallet.com anymore, so you will avoid the hidden potential risk here.

Rothscoin team.

Yes it is not the MEW side fault. but maybe in the future, can they have a 2fa authentication for login into MEW ?
i think it is necessary to develop some security system on the web wallet such as MEW.

willoweb

sr. member

Activity: 658

Merit: 251

Hardware wallets our salvation in such situations, well, or at least Metamask, but certainly not a private key to access the wallet through MEW.

Dudesss

jr. member

Activity: 173

Merit: 1

Yea I have noticed yesterday that the website of MEW is not accesable there was something on the page that it was being attack by some kind of crap I thought I was having problem with my Internet or Browser and now that I have read this it is clear now Thanks!

h55

member

Activity: 210

Merit: 11

Quote from: RothsCoin on April 25, 2018, 12:41:54 AM

Popular Ethereum wallet interface MyEtherWallet has succumbed to a DNS hijacking attack that allowed a hacker to redirect users to a malicious version of the website.

The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading on the Reddit forum. The attacking IP address seems to come from Russia. At the time of writing, 25,000 ETH ($ 17 million) has been stolen.

It is highly recommend that everyone be careful when using the MEW wallet and follow the security instructions by MEW wallet. In other words, you are advised to integrate Metamask into login and make direct transactions via Metamask. If you want to check your balance, visit https://etherscan.io/, which means you do not have to log into MyEtherwallet.com anymore, so you will avoid the hidden potential risk here.

Rothscoin team.

yesterday DNS erorr was clear. but after 2 hours they try to fix it. Now it works fine for me. hackers tried to hack DNS from last week and i did not login to my wallet.

Duzenn

member

Activity: 252

Merit: 10

The Experience Layer of the Decentralized Internet

That's the bad news.
Because most of the time I trust online wallets, I'm afraid to use MyEtherWallet wallet again, and I'm afraid of losing.

santouao

full member

Activity: 560

Merit: 101

#SWGT PRE-SALE IS LIVE

Beware if the myetherwallet website is don't have https and don't use private key when accessing your myetherwallet. For now don't transact yet while ethereum developers fixing myetherwallet to prevent loosing ethereum and tokens. We can use an alternative coin for now like bitcoin, neo, and other altcoins for all of our transactions while ethereum is recovering.

Bttzed03

legendary

Activity: 2114

Merit: 1149

https://bitcoincleanup.com/

This is really unfortunate. I believe MEW have been notified of this issue before by BLUE team way back in January. I think MEW could have prevented this if they welcomed the warning and took the necessary action.

chanc3r

sr. member

Activity: 952

Merit: 253

Quote from: qiwoman2 on April 25, 2018, 01:43:21 AM

The problem is if people rush a lot, like we did a few days ago, it is very easy to lose a ton. Many people were redirected to a phishing site so that is the way they lost money and access to their tokens and ETH. Always you need to check that there is a green bar at the top, never ever put in your private keys without seeing the proper URL. We need to slow down and be very careful because in this Industry there are so many thieves waiting for us to make just one mistake and we lose everything. We all need to take cyber security in general more seriously, especially when we are dealing with money issues.

This is no only the first time the scammers are using DNS hijacking method to replace the real site with a fake one. I remember there are some icos are getting the same problem like parity. Remember this already happened with MEW for a few times. I guess use google DNS is not safe anymore and i'm not using it and nothing happen to me.

dhiraj0977

jr. member

Activity: 518

Merit: 1

Really scaring MEW threat. I will always now scan my balance on etherscan and ethplorer for update, try to prevent login directly in MEW wallet.

coinshn

newbie

Activity: 41

Merit: 0

When you see the actual number like 17 million it's a wake-up call.

I had over $600 of cryptos stolen last year from a wallet. I wonder if that 17 million number only includes ETH and doesn't count the value of all tokens stolen?

Topic: MyEtherWallet Succumbs to DNS Attack with $ 17 million stolen - page 4. (Read 543 times)