Hackers Steal $152,000 from MyEtherWallet Users


Thieves have made away with $152,000 worth of Ether in the latest hacking targeting cryptocurrencies. This time, the target was with attackers taking advantages of vulnerabilities in the DNS system to redirect users to a phishing site, data from Chainalysis shows.

The redirection happened for two hours before it was detected. Oracle was the first to take note of the breach. Traffic was redirected to a Russian server under the control of hackers.


DNS is a directory service that associates user-friendly domains to numerical IP addresses containing certain computer services. DNS attacks take advantage of the back and forth communication between clients and servers redirecting them to rogue websites where passwords and other information are stolen. The technique has been in existence for a long time.

“It is our understanding that a couple of Domain Name System registration servers were hijacked at 12 PM UTC to redirect myetherwallet[dot]com users to a phishing site, a statement from MyEtherWallet on Reddit said.

Decade-Old Technique

“This redirecting of DNS servers is a decade-old hacking technique that aims to undermine the Internet’s routing system. It can happen to any organization, including large banks. This is not due to a lack of security on the @myetherwallet platform. It is due to hackers finding vulnerabilities in public-facing DNS servers,” it added.


MyEtherWallet says the attack mostly affected users using Google DNS Servers. “We recommend all our users to switch to Cloudflare DNS servers in the meantime.”

DNS attacks are not that uncommon. Major sites like Facebook and even Google have been affected. A similar attack targeting digital tokens saw the loss of over $400,000 worth of Stellar Lumens in January.

Affected users likely ignored an SSL certificate warning, MEW says. Users are warned to “PLEASE ENSURE there is a green bar SSL certificate that says “MyEtherWallet Inc” before using MEW.”

Leave a Reply

Notify of

Risk Warning: Investing in digital currencies, stocks, shares and other securities, commodities, currencies and other derivative investment products (e.g. contracts for difference (“CFDs”) is speculative and carries a high level of risk. Each investment is unique and involves unique risks.

CFDs and other derivatives are complex instruments and come with a high risk of losing money rapidly due to leverage. You should consider whether you understand how an investment works and whether you can afford to take the high risk of losing your money.

Cryptocurrencies can fluctuate widely in prices and are, therefore, not appropriate for all investors. Trading cryptocurrencies is not supervised by any EU regulatory framework. Past performance does not guarantee future results. Any trading history presented is less than 5 years old unless otherwise stated and may not suffice as a basis for investment decisions. Your capital is at risk.

When trading in stocks your capital is at risk.

Past performance is not an indication of future results. Trading history presented is less than 5 years old unless otherwise stated and may not suffice as a basis for investment decisions. Prices may go down as well as up, prices can fluctuate widely, you may be exposed to currency exchange rate fluctuations and you may lose all of or more than the amount you invest. Investing is not suitable for everyone; ensure that you have fully understood the risks and legalities involved. If you are unsure, seek independent financial, legal, tax and/or accounting advice. This website does not provide investment, financial, legal, tax or accounting advice. Some links are affiliate links. For more information please read our full risk warning and disclaimer.