Over the past two days, a hijack has been deployed which targets Google users accessing the MyEtherWallet platform via a Google search. The hijack in question triggers warnings in the MEW platform upon loggingin, but many users ignored such warnings, allowing the exploit to access their wallets and transfer their balances - ethereum and tokens alike, to a series of addresses. At the moment, this attack appears to be linked to a vulnerability of the DNS server which Google hosted the link. This comes as an affirmation not to rely on Google for your secure investments and services. Previously, the sponsored ad platform allowed many untoward actors to buy advertisements in prime spots for phishing/scam projects and other things, again leading to many people losing their hard-earned cryptocurrency. In that case, Google responded by denying ads to all crypto-based projects and ICOs, though this received much criticism at the time.
Likewise, MyEtherWallet have announced on social media that it is currently unwise to access the service until the full breadth and scope of the attack is known. Those curious about their balances can check them easily on https://etherscan.io/ without needing to use their private keys. Simply know your public key, aka your "send address" and the platform natively has support for token holdings, price charts, and conversions. It is the most popular Ethereum block explorer. Times like these remind us the importance of security measures in regards to our cryptocurrency. All someone needs in order to access your funds is your private key - that's a 40 character unique string of text. If that key can be found in your clipboard, your recycle bin, your internet search history... it can be used, and your funds stolen. Hwardware wallets are a popular solution, but one should always act as though someone has their eye on your goods, as they very well may. The MEW hack appears to operate via an autonomous script, affecting anyone who allowed it access - no matter how little or how much Ethereum they had. As of now, the wallets linked with the hack have racked up millions of dollars, and the number keeps growing.
As always, stay safe, and HODL on.
Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
You have a minor misspelling in the following sentence:
It should be received instead of recieved.Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
Thanks, mate
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit