Join Our Mailing List
Monday January 30, 2023
Bitcoin (BTC) $23,748.36   Ethereum (ETH) $1,645.28
  • Events
  • News
    • Blockchain Technology
    • Capital Raising
    • Crypto Exchanges
    • Crypto Payments
    • Gaming & Betting
    • Investment Management
    • M&A
    • Mining
    • Networks & Protocols
    • Security
    • Vendor Technology
    • Wallets
Trezor Model T
CryptoNinjas
  • Crypto & Blockchain Links
  • Real-Time Market Data
  • Bitcoin ATM Map
  • Token Offerings/Listings
No Result
View All Result
CryptoNinjas
Home Featured

MyEtherWallet service back to normal after phishing attack

Published by CryptoNinjas.net
04/24/2018
MyEtherWallet service back to normal after phishing attack

Earlier today MyEtherWallet.com’s Google Domain Name System registration servers were hijacked at roughly 12 PM UTC so that users were redirected to a phishing site. The redirecting of DNS servers is a long used hacking technique that aims to undermine the internet’s routing system.

Kevin Beaumont of DoublePulsar noted, “The attackers used BGP — a key protocol used for routing internet traffic around the world — to reroute traffic to Amazon’s Route 53 service, the largest commercial cloud provider who count major websites such as Twitter.com as customers. They re-routed DNS traffic using a man in the middle attack using a server at Equinix in Chicago. From there, they served traffic for over two hours.”

“So far the only known website to have traffic redirected was to MyEtherWallet.com, a cryptocurrency website. This traffic was redirected to a server hosted in Russia, which served the website using a fake certificate — they also stole the crypto coins of customers. The attacks only gained a relatively small amount of currency from MyEtherWallet.com — however, their wallets in total already contained over £20m of currency. Whoever the attackers were are not poor.”

MyEtherWallet’s Official statement regarding DNS spoofing of domain

It is our understanding that a couple of Domain Name System registration servers were hijacked at 12 PM UTC to redirect myetherwallet[dot]com users to a phishing site.

This redirecting of DNS servers is a decade-old hacking technique that aims to undermine the Internet’s routing system. It can happen to any organization, including large banks. This is not due to a lack of security on the @myetherwallet platform. It is due to hackers finding vulnerabilities in public-facing DNS servers.

A majority of the affected users were using Google DNS servers. We recommend all our users to switch to Cloudflare DNS servers in the meantime.

Affected users are likely those who have clicked the “ignore” button on an SSL warning that pops up when they visited a malicious version of the MEW website.

We are currently in the process of verifying which servers were targeted to help resolve this issue as soon possible.

A message to our MEW community:

Users, PLEASE ENSURE there is a green bar SSL certificate that says “MyEtherWallet Inc” before using MEW.

We advise users to run a local (offline) copy of the MEW (MyEtherwallet).

We urge users to use hardware wallets to store their cryptocurrencies.

In the meantime, we urge users to ignore any tweets, Reddit posts, or messages of any kind which claim to be giving away or reimbursing ETH on behalf of MEW.

Your security and privacy is ALWAYS our priority. We do not collect or own any user data.

We greatly appreciate your patience and understanding as we try to fight against this criminal phishing attack.

To keep up this fight against phishing, we need our amazing community to support

Ken Hodler, the chief engineer of hardware wallet company KeepKey, commented on the hack ordeal:

“Hardware wallets are of paramount importance to securing your cryptocurrencies and tokens. Competitors would have been subjected to the hack, due to MEW integration, but KeepKey remains the only hardware solution that supports ERC-20 tokens natively. This recent exploit hammers home the point that cryptocurrency users can no longer continue to expose their private keys to such attack vectors, and that, as breaches like these are only set to increase in frequency over time, every user should invest in an HSM solution to keep their funds safe.”

64
SHARES
FacebookTwitterLinkedinRedditE-MailTelegram

Related News

MyEtherWallet launches multi-chain wallet extension for Polkadot (DOT): Enkrypt

08/03/2022
MyEtherWallet launches multi-chain wallet extension for Polkadot (DOT): Enkrypt

MEW (MyEtherWallet), a platform to access the Ethereum ecosystem, has announced the launch of a new cross-chain browser extension, Enkrypt, which will support transactions across Ethereum and Polkadot. For the first time, MEW users...

Read more

ETH wallet MEW enhances its crypto/fiat gateway with MoonPay

03/22/2022
ETH wallet MEW enhances its crypto/fiat gateway with MoonPay

MEW (MyEtherWallet), a platform to access the Ethereum ecosystem, today announced the integration of MoonPay, a crypto payments infrastructure company. This integration will provide a new fiat on-ramp for MEW users, while also introducing...

Read more

MyEtherWallet (MEW) integrates Staked dApp to bring Eth2 directly to users

12/08/2020
MyEtherWallet (MEW) integrates Staked dApp to bring Eth2 directly to users

MyEtherWallet (MEW), a popular Ethereum wallet interface, has announced the integration of Staked, a dApp which helps investors compound crypto through staking. The announcement comes on the heels of a successful "Phase 0" Eth2...

Read more

MyEtherWallet chooses Rivet for Ethereum blockchain node services

11/22/2019
MyEtherWallet chooses Rivet for Ethereum blockchain node services

MyEtherWallet (MEW), a  user interface client for interacting with the Ethereum network, has announced a new partnership with Rivet to provide for its blockchain infrastructure needs. Rivet was created by the same folks who...

Read more
Load More
Leave Comment

Where to Exchange

Leading crypto suite in Spain & LATAM Visit
European bitcoin exchange Visit
Swap & buy 150+ cryptocurrencies Visit
First U.S. regulated BTC exchange Visit
  • Trending
  • Latest
Trust Wallet launches anticipated browser extension of its crypto management app

Trust Wallet launches anticipated browser extension of its crypto management app

11/14/2022
Crypto derivatives exchange Deribit to put in place trade surveillance platform from Eventus

Crypto derivatives exchange Deribit to put in place trade surveillance platform from Eventus

01/24/2023
6 Best Cloud Mining Platform In 2022

6 Best Cloud Mining Platform In 2022

11/20/2022
Where Exactly Can You Spend Monero Cryptocurrency?

Where Exactly Can You Spend Monero Cryptocurrency?

10/20/2021
Crypto derivatives exchange Deribit to put in place trade surveillance platform from Eventus

Crypto derivatives exchange Deribit to put in place trade surveillance platform from Eventus

01/24/2023
Crypto exchange Gemini launches new electronic OTC trading solution

Crypto exchange Gemini launches new electronic OTC trading solution

01/19/2023
Crypto securitization platform-GenTwo links to all Coinbase assets

Crypto securitization platform GenTwo links to all Coinbase assets

01/14/2023
Blockchain ecosystem ThunderCore teams with Huobi and MyCointainer in node expansion

Blockchain ecosystem ThunderCore teams with Huobi and MyCointainer in node expansion

01/05/2023
  • Home
  • Directory
  • Data
  • About
  • Contact
SUBSCRIBE

© 2016 - 2023 CryptoNinjas Disclosures | Privacy Policy

  • Home
  • Crypto Links
  • Market Data
  • Blockchain Tech
  • Exchanges
  • Capital Raising
  • Vendor Technology
  • Token Offerings/Listings
  • Payments
  • Wallets
  • Bitcoin ATM Map
  • Conferences & Events
  • About
  • Contact
No Result
View All Result

© 2016 - 2023 CryptoNinjas Disclosures | Privacy Policy