[My Daily News] MyEtherWallet wallet hacked DNS, at least $ 17 million stolen
the MyEtherWallet (MEW), the world's largest ethereum and Token ERC20 wallet platform, has recently been hacked and at least $ 17 million stolen.
MyEtherWallet recently posted a message saying that some of their DNS servers were hacked to redirect users to a fake Web site.
The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading rapidly on the Reddit forum. And it seems IP addresses attacked from Russia.
So far hackers have put 25,000 ETH ($ 17 million) to this address: https://etherscan.io/address/0xb3aaaae47070264f3595c5032ee94b620a583a39
Currently, Virtual Money Blog recommends that users of wallet MEW do not log into the wallet at the present time to avoid hackers abuse until MEW provided information has fixed the problem.
Here is a brief overview on "topic 1" here, about the problem the user discovered when logging in the MEW wallet was redirected to another site and eventually he lost ETH:
Today I wake up, open my computer accessing MyEtherWallet, and find that my connection is having an invalid connection certificate (literally: connection error, when a web page appears, ie the web page is experiencing an invalid connection certificate). is not legally accessible, is in the wrong corner of the web. I think this is pretty strange so I double-checked the URL, checked the third time, even went to google to search for that URL. I also use EAL to confirm that it is not a phishing site (phishing site: websites that are designed to steal sensitive information from users who access such as login name, password, private key, And although my mind and heart prevented me from logging in, I logged into MEW. At the same time, a 10 second countdown timer and a transaction have been made, automatically sending all my money to another address: 0x1d50588C0aa11959A5c28831ce3DC5F1D3120d29
I did not know what had happened. I did not download anything strange about the machine and also careful to avoid problems like this. I'm curious about how this game works. Do they have my private key? Why everything happens automatically when I login to MEW?
MEW is still displaying an invalid access error, which means that my visit to this site has been compromised. I ran a scan with Avast and MalwareBytes but did not see anything. All help is welcome ...
You should not log in to MEW until this issue is resolved clearly. Also never enter a private key for any organization / person requesting, and restrict access to web pages sent via email. In general, all information sent by email from unrelated people must be suspicious. And finally be wary when visiting the familiar site that suffers as below:
At this point, Virtual Money Blog is recommending people to be careful when using MEW wallet and follow the security MEW wallet that we have guided, that is integrated Metamask to log in and transact directly Metamask, if you want to check your account balance then use https://etherscan.io/ means you do not need to log in to MyEtherwallet.com anymore, so you will avoid the potential risk that this wallet bring. See instructions for installing and using MEW as well as how to integrate Metamas into here.
You should share this article with friends and relatives to warn them not to sign in to MEW and how to protect their property offline!