MyEtherWallet Hacked using DNS attack: How to use MyEtherWallet safely?

myetherwallet hacked dns

Couple of DNS servers were hijacked to resolve http://myetherwallet.com users to be redirected to a phishing site. This is not on myetherwallet side. The redirecting of DNS servers was done and it can happen to any organization including big banks. Hackers often find vulnerabilities in public DNS servers. This happened to mainly those who were mainly using Google DNS servers. If you were using non-Google DNS servers, you are safe.

Affected users include those users that clicked on “ignore” button about SSL warning.

So, make sure to check green bar SSL certificate that says MyEtherWallet Inc before using myetherwallet website.

Hacker’s ethereum address is 0x1d50588C0aa11959A5c28831ce3DC5F1D3120d29 and he has been able to get millions of dollars worth of Ethereum and ERC20 tokens in just an hour.

Google DNS is down in many parts of the world right now, some bad actor has control of the MEW DNS registry at 8.8.8.8 and is stealing everyone’s ethereum.

The only good advice is
– to download MEW and use it locally instead of using the website
– always use a hardware wallet or MetaMask, at least an attacker doesn’t have your private key then
– stop when you see such a warning, they exist for a reason