Privacy Coin Verge Twitter Hacked

Hacker claimed that 1 billion of XVG coins were stolen
15 March 2018   361

Verge, a cryptocoin that claims “advanced privacy as a choice”, had its Twitter account hacked. The attacker attempted to scam them out of verge (XVG) coins. By the time the account had been restored, the price of XVG had fallen in value. This is reported by Coindesk.

After team managed to get the account back, they blamed the AT&T, said the that compnay managed to get "socially engineered".

After the hack, account posted this:

Verge Twitter
Verge Twitter

It is impossible to check were the coins stolen. The Verge community quickly suggested that the attacker acted because they had felt “threatened” by the altcoin’s ascendancy. They also blamed Twitter for the hack.

This is situation had huge negative effect onto Verge's price.

Verge Price Chart
Verge Price Chart

At the moment of press, these are the main XVG market parameters:

  • Average price: $0,028972
  • Market cap: $426 211 822 USD 
  • 24h Volume: $9 253 360 USD 

MyEtherWallet DNS Servers Hacked

Number of MEW DNS servers have been replaced by unknown hackers for redirecting users to a phishing site; around $150k were stolen
25 April 2018   2

Users of MyEtherWallet lose around $152,000 worth of ether due to wallet's DNS servers hack.

Representatives of MyEtherWallet have already confirmed that a number of DNS servers have been replaced by unknown hackers for redirecting users to a phishing site. They also added that the problem arose not on the side of the service and at the moment they are trying to identify problem servers and resolve the situation.

MyEtherWallet Twitter
MyEtherWallet Twitter

Affected users used Reddit to report on the hack.

Went on to myetherwallet and saw that myetherwallet had [an] invalid connection certificate in the corner. As soon as I logged in, there was a countdown for about 10 seconds and A tx was made sending the available money I had on the wallet to another wallet  '0x1d50588C0aa11959A5c28831ce3DC5F1D3120d29.' I have no idea what happened.
 

rotistain at Reddit

Developers gave their advices.

Do not use myetherwallet.com if you're using Google Public DNS (8.8.8.8 / 8.8.4.4) at this moment. It seems these DNS servers are resolving the domain to a bad server that CAN steal your keys!
 

Micky Socaci

Lead developer, BlockBits. io

The official statement of MyEtherWallet said that the problem affected only those who used DNS-servers from Google. The service strongly encourages all users to use the server from Cloudfare.

Representatives of the resource also reminded users about the basic security rules: checking the SSL certificate, preferring the use of an offline copy of MyEtherWallet, storing crypto currency on hardware devices. In addition, they asked users to ignore scammers offering free distribution of ETH tokens.