Yes fill it up. They cannot hack you just by telling them your address and transaction Hash. All the information required can be found in the etherscan without opening your wallet. if you know your address. People should get a ENS so they can check their wallet constantly without opening or memorizing their address. You can search my address https://etherscan.io/enslookup?q=gildarsh.eth for example.


It is unfortunate but this hacking happened because of their "White list" that sounds like racist. It puts other people who does not belong in the whitelist to be like a 2nd rate citizen. Other ICO in the past are able to provide the ETH address 2 days before the ICO. People are able to verify the contract of the ICO publicly before the ICO started. But since there is a Whitelist, they could not publish the address just to give unfair advantage to their "Early Supporters." Therefore, it created an opportunity to the hacker to hacked the website just after the timer started.  As an investor who missed out on the other iCO because it finishes so quickly, we did not bother checking the address. We just add the address and send it immediately without even checking the address if it is a contract or not. https://drive.google.com/open?id=0B7288nKEgxRJRTJfX0p2VTQtVTg
In the image you can compare the 2 addres - 1 is from the contract in IMMLA (other ICO) and the other is the fake coindash address (not a contract).

I already accepted that i messed up because i did not check the address. But i am happy with the response of the Coindash team to still give our my CDT (Hopefully). Next time I will check the address before sending them, safety 1st ofcourse. Also, I hope in the future ICOs, people should go against the whitelist and request transparency of the ETH address so we can review it.