Coinhive hacked

Hackers were able to mine Monero for six hours, using the Coinhive power
26 October 2017   1222

On the night of October 24, unknown hackers hacked the Coinhive Miner's DNS server and redirected the production of crypto-currency to their own server. As reported by the Coinhive official blog, the hackers took advantage of the old password from Cloudflare, which was stolen from Kickstarter back in 2014.

Within six hours hackers mined the Monero cryptocurrency through thousands of computers of its victims around the world. The amount of damage to Coinhive users is not reported.

At the same time, the company reported that hackers did not have access to servers with databases and could not steal personal data.

We have learned hard lessons about security and used 2FA and unique passwords with all services since, but we neglected to update our years old Cloudflare account.
We're deeply sorry about this severe oversight.
 

Coinhive Team

Now the company is looking for opportunities to recover damages to its customers. In particular, it is planned to provide users with an additional 12 hours of using the service. 

MyMonero Desktop Wallet Released

The desktop application is a lightweight wallet and does not require the user to download the entire Monero blockchain
01 August 2018   169

Developers of MyMonero wallet published a JavaScript library for desktop and browser versions of the product.

New features:

  • Desktop: Fixed a critical issue in previous release due to insufficient testing where Contact records would not be loadable after first save (this was due to emojis being incorrectly encoded in the encryption library). If you have any Contact records which can't be loaded, please delete them from the app in the Edit modal, and add the contact info again.
  • Desktop: Added built-in software update functionality
  • Added web wallet support for Firefox after locating runtime crash on webkit CSS rule insert
  • Added support for incoming new generated_locally flag and server-supplied start_height to ensure that the correct Import Transactions button visibility persists across successive logins
  • A few minor UX and security improvements
  • Web wallet footer

The desktop application is a lightweight wallet and does not require the user to download the entire Monero blockchain.

Earlier XMR Wallet announced the successful completion of an external security audit.