Re: MyEtherWallet Succumbs to DNS Attack with $ 17 million stolen

Quote from: RothsCoin on April 25, 2018, 04:41:54 AM

Popular Ethereum wallet interface MyEtherWallet has succumbed to a DNS hijacking attack that allowed a hacker to redirect users to a malicious version of the website.

The MEW confirmed that this was not their fault and was trying their best to identify the attacked server to fix things as soon as possible.
This topic is rapidly spreading on the Reddit forum. The attacking IP address seems to come from Russia. At the time of writing, 25,000 ETH ($ 17 million) has been stolen.

It is highly recommend that everyone be careful when using the MEW wallet and follow the security instructions by MEW wallet. In other words, you are advised to integrate Metamask into login and make direct transactions via Metamask. If you want to check your balance, visit https://etherscan.io/, which means you do not have to log into MyEtherwallet.com anymore, so you will avoid the hidden potential risk here.

Rothscoin team.

Yes it is not the MEW side fault. but maybe in the future, can they have a 2fa authentication for login into MEW ?
i think it is necessary to develop some security system on the web wallet such as MEW.