WARNING: MEW DNS COMPROMISED, OVER 24 THOUSAND ETHER STOLEN

Baronggot

full member

Activity: 434

Merit: 100

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

There’s no perfect system and security always comes first within ourselves. Those people who got hacked most of the time are those people who are just so careless. One safety measure so you can assure you are visiting the legal site is to always check the SSL Certificate on the leftside of the URL.

bbc.reporter

legendary

Activity: 3010

Merit: 1460

Quote from: Antocrypto on April 24, 2018, 09:15:35 PM

Quote from: bbc.reporter on April 24, 2018, 09:08:15 PM

Quote from: Antocrypto on April 24, 2018, 06:04:07 PM

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

Or you could just not use MEW and switch to something more safe and secure

What would your suggestion be? I reckon it would be the same problem with all webwallets if servers are not configured and secured properly.

Running MyEtherWallet locally in a secure PC is the most secure way to access an ETH wallet.

It's unfortunate that these issues are so persistent in our large community. We are all family, we all make each other laugh with memes during market crashes, etc. We DESERVE better. Wallets and interfaces alike need MORE features to prevent scam and phishing while also providing a breakthrough in security that ensures safety. Personally, I use Blue Protocols chrome extension wallet. It is NEVER ran through a server while also having address blacklisting, whitelisting and more. Most importantly, they're working on implementing what they call a DECENTRALIZED 2FA. When that happens, it will be a HUGE step for crypto security and safety.

There was a hack on one of the DNS servers, so it was not all MyEtherWallet's fault. The same hack can happen in any webwallet.

In any case, now you know why it is very important to run your wallet and use your private keys locally.

xtac4u22

newbie

Activity: 87

Merit: 0

This is the reason why we need something like #blueprotocol which has been doing great lately to control and secure tokens. Moreover they will also take care of the scammy tokens.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: Prodigan786 on April 24, 2018, 10:25:58 PM

How about mycrypto wallet it is also compromised not sure whom to believe . Once etherdelta owner changed etherdelta exchange hacked then forkdelta created . Now the same scenario going on but this time mycrypto created then myetherwallet dns compromised. Still options are there eidoo wallet and some other still good option . But I am waiting until the whole scenario resolved.

Can't give any information on those because I am unsure

Prodigan786

sr. member

Activity: 434

Merit: 250

How about mycrypto wallet it is also compromised not sure whom to believe . Once etherdelta owner changed etherdelta exchange hacked then forkdelta created . Now the same scenario going on but this time mycrypto created then myetherwallet dns compromised. Still options are there eidoo wallet and some other still good option . But I am waiting until the whole scenario resolved.

nguyenthicamtu

newbie

Activity: 112

Merit: 0

i just heared this information on this morning. To be very dangerous when use a harmful internet to conect with wallet. I consider to buy a cold storage wallet to save my coin

Antocrypto

jr. member

Activity: 34

Merit: 6

Personally, I really hate to see the good get screwed over after trusting something whether it's a person, interface, etc. This community is unlike anything that i've ever been a part of. I made so many connections with people in this space whether it's in a professional or just as friends. I personally connect with several members of our giant community and I can't stand watching them wait helplessly as their funds are getting sucked out of their wallets. You're talking about innocent and good people that are just getting screwed over. Change needs to happen; and it will.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: republicrypto on April 24, 2018, 09:19:57 PM

i hope myetherwallet will solve this issue as soon as possible
and maybe this issue will make eth price down for a while,
just a while, because its time for eth to grow Wink

regards

I just know that something else needs to be and can be better than MEW. So many Ethereum investors rely on it to keep their assets safe and it's really not benefiting much besides allowing a price drop for investors to buy. Investors, whether noobs or knowledged, are losing their funds due to poor security and a poor interface.

republicrypto

sr. member

Activity: 1414

Merit: 252

Keep it Simple guys :)

i hope myetherwallet will solve this issue as soon as possible
and maybe this issue will make eth price down for a while,
just a while, because its time for eth to grow Wink

regards

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: bbc.reporter on April 24, 2018, 09:08:15 PM

Quote from: Antocrypto on April 24, 2018, 06:04:07 PM

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

Or you could just not use MEW and switch to something more safe and secure

What would your suggestion be? I reckon it would be the same problem with all webwallets if servers are not configured and secured properly.

Running MyEtherWallet locally in a secure PC is the most secure way to access an ETH wallet.

It's unfortunate that these issues are so persistent in our large community. We are all family, we all make each other laugh with memes during market crashes, etc. We DESERVE better. Wallets and interfaces alike need MORE features to prevent scam and phishing while also providing a breakthrough in security that ensures safety. Personally, I use Blue Protocols chrome extension wallet. It is NEVER ran through a server while also having address blacklisting, whitelisting and more. Most importantly, they're working on implementing what they call a DECENTRALIZED 2FA. When that happens, it will be a HUGE step for crypto security and safety.

bbc.reporter

legendary

Activity: 3010

Merit: 1460

Quote from: Antocrypto on April 24, 2018, 06:04:07 PM

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

Or you could just not use MEW and switch to something more safe and secure

What would your suggestion be? I reckon it would be the same problem with all webwallets if servers are not configured and secured properly.

Running MyEtherWallet locally in a secure PC is the most secure way to access an ETH wallet.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: gabum19 on April 24, 2018, 08:56:46 PM

This is disgusting. Hackers know that the coins are getting better they take advantage with our accounts. MEW is not safe for now, if you need to check your tokens go directly to EtherScan.io for your concerns. Be safe everyone, scammers are on their move. Goodluck.

MEW never was safe, they can be compromised whenever. It's too targeted, it's security it's weak, and sending user private keys and wallet files to servers is just a gateway for hackers.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: Sithara007 on April 24, 2018, 08:50:30 PM

Quote from: Antocrypto on April 24, 2018, 06:04:07 PM

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

Or you could just not use MEW and switch to something more safe and secure

Which other wallet is more safe and secure compared to Myetherwallet? MEW is having more than 10 million users and till now they didn't had any serious issues with bugs or hacks.

That's where you're incorrect. BLUE Protocol has called MEW out for DNS issues dating back to January-February. During that time, MEW got compromised via DNS and denied it. Coincidentally, the hackers wallet address had funds send to it that date back to around this time with comments via etherscan stating that funds were stolen. Wallets are getting better with their security but 2FA is still breachable. BLUE is implementing what they call a trustless D2FA which will be the most secure feature out there. It's rather funny how cryptocurrency is cryptography but we still have poor security. These are things they're trying to solve. This is not meant as a way to promote their project but they have a really good gameplan in crypto and their wallet is super simple and is secure since it's information is NEVER sent to a server.

gabum19

jr. member

Activity: 224

Merit: 2

This is disgusting. Hackers know that the coins are getting better they take advantage with our accounts. MEW is not safe for now, if you need to check your tokens go directly to EtherScan.io for your concerns. Be safe everyone, scammers are on their move. Goodluck.

Sithara007

legendary

Activity: 3332

Merit: 1352

Leading Crypto Sports Betting & Casino Platform

Quote from: Antocrypto on April 24, 2018, 06:04:07 PM

Quote from: BQ on April 24, 2018, 06:03:10 PM

While there are multiple threads up about this, it's important so I will write again:
always check that the little green lock next to the url bar is green!

you can also download MyEtherWallet and run locally!!!

Or you could just not use MEW and switch to something more safe and secure

Which other wallet is more safe and secure compared to Myetherwallet? MEW is having more than 10 million users and till now they didn't had any serious issues with bugs or hacks.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: andrei56 on April 24, 2018, 07:04:06 PM

Quote from: Antocrypto on April 24, 2018, 11:14:57 AM

MyEtherWallet DNS servers have been compromised leading to a phishing redirect over the past several hours. This is confirmed by MyEtherWallet on Twitter. A staff member of BLUE has dug through the phishing and discovered an address that leads to the following code line "// eth_recipient='0x06A85356DCb5b307096726FB86A78c59D38e08ee'; //!!!!!!!!!!!!!!!" This is believed to be copied code from the legit website. AVOID MYETHERWALLET.
Twitter links
https://twitter.com/myetherwallet/status/988787116015415296
https://twitter.com/Blue_Protocol/status/988787103935934464
https://twitter.com/Blue_Protocol/status/988782513777717248

What terrible news, imagine your surprise if you're the one losing money, I have not used that website in some time probably some months but I'm still going to check just in case if my coins are fine and if possible from now on I will look for alternatives because hackers are doing everything they can to get access to that website and steal our coins.

It's definitely a major issue with using interfaces. You're literally uploading your files and private keys to a server that can be easily breached. Their security is extremely weak and I definitely think people need to start steering clear from the interface.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: DevelopmentBank on April 24, 2018, 08:19:22 PM

Not sure if your post is FUD or something else if fishy. The supposedly hacker's recipient address (shown below) has no transactions even more than 1 ETH going into it:

Quote

// eth_recipient='0x06A85356DCb5b307096726FB86A78c59D38e08ee'; //

At most it got 1 ETH. Where is this 234 THOUSAND ether you are talking about? Thats a lot. and that is probably FUD. Calm down everyone.

My apologies, it was 24 thousand ETHEREUM, not 234 ( I am making the edit) but much different than 1 ethereum.

Antocrypto

jr. member

Activity: 34

Merit: 6

Quote from: vertinfos on April 24, 2018, 06:45:33 PM

Tell me a good wallet to be more secure than mew, found just such another , preferably with 2fa

BLUE wallet chrome extension. They're working on a trustless DECENTRALIZED 2FA for their wallet.

DevelopmentBank

full member

Activity: 406

Merit: 110

Not sure if your post is FUD or something else if fishy. The supposedly hacker's recipient address (shown below) has no transactions even more than 1 ETH going into it:

Quote

// eth_recipient='0x06A85356DCb5b307096726FB86A78c59D38e08ee'; //

At most it got 1 ETH. Where is this 234 THOUSAND ether you are talking about? Thats a lot. and that is probably FUD. Calm down everyone.

awazieik

full member

Activity: 448

Merit: 100

Quote from: Antocrypto on April 24, 2018, 11:14:57 AM

MyEtherWallet DNS servers have been compromised leading to a phishing redirect over the past several hours. This is confirmed by MyEtherWallet on Twitter. A staff member of BLUE has dug through the phishing and discovered an address that leads to the following code line "// eth_recipient='0x06A85356DCb5b307096726FB86A78c59D38e08ee'; //!!!!!!!!!!!!!!!" This is believed to be copied code from the legit website. AVOID MYETHERWALLET.
Twitter links
https://twitter.com/myetherwallet/status/988787116015415296
https://twitter.com/Blue_Protocol/status/988787103935934464
https://twitter.com/Blue_Protocol/status/988782513777717248

Yes this is why on MEW site, they talk about how to secure your coins. Remember that MEW is not an online wallet ; this they have said many times on their site. They are interface to your address on the Ethereum wallet. It is easy to hack into the MEW website and it has suffered so much attack. So sad for those that lost their funds

Topic: WARNING: MEW DNS COMPROMISED, OVER 24 THOUSAND ETHER STOLEN (Read 249 times)