One of the most popular online wallets for cryptocurrencies, MyEtherWallet (MEW), was recently attacked by cyber criminals. The incident took place two days back, and it has been reported that quite a few users lost their money.
Apparently, the site wasn’t directly hacked. Hackers used the DNS server to reroute users to phishing websites instead of MEW. According to a tweet shared by MEW, they noticed that a majority of these users were using Google DNS servers. This happened due to the ignorance of an SSL warning that must have popped up before entering the site.
MEW also tweeted advice for its users on how to avoid such scams in the future.
⅘ Some advice for our users: run a local (offline) copy of MEW platform. Use hardware wallets to store your cryptocurrencies. IGNORE any tweets, Reddit posts, or ANY messages which claim to be giving away or reimbursing ETH on behalf of MEW.
— MyEtherWallet.com (@myetherwallet) April 24, 2018
Coindesk has stated that users lost around $152,000 in the scam. However, according to TechCrunch, the amount lost totaled only $356.000. Since the hack wasn’t targeted directly at MEW, its difficult to track the actual damages.
Currently, only MEW users have raised their voice about the attack but there could be more ready to hit the servers. Cryptocurrency users should stay alert and follow the tips highlighted by MEW.