Bitcoin Forum

I'm hacked victim,I used my etherwallet to received my assets..but why hacker know my pivate key? Hacker is sent ethereum into my wallet and used as a gas to get all my coins..how it all happened  guys.?

I don't understand what is your problem?

How can anyone take your private key by sending ethereum to the address? :o

I think you may entered into the clone MEW website where the hackers used to copy your private key and then your funds were stolen.But any probide your wthereum address then we can understand what was the problem here.

Of course it's not safe when you log into the wrong website and they steal your private key.

The only thing that can happen to you accurately is that hackers gained your info including private key through a phishing link.

Can you give the last website you visited or at least screen shot the history of your browser with MEW only.

The spelling might be rumbled and you didn't noticed it so you are confident that you logged in to the right one.

And by the time that they are able to access your account, they stole all of your funds quickly.

It happened with me one time, you might have filled some blanks with your private key or maybe you have given your private key to a scammer and he got your coins.Maybe your pc contains a virus, just store your private keys on a safe place and you will never get hacked again.

Do you know it takes 100years to find a private key sequence so it is impossible to hack your account so you did something wrong like clicking the phishing links or saved your private keys in online drive.

Hmm, doesn't make sense. If someone sent you Ethereum, then in no way they can know about your private key. Could you post the site link using your browser history. Maybe you entered a scam site. And what about the gas thing. Didn't understood it at all.

Yeah, it is not possible to expose your private key like that. That simply is not how things work. MyEtherWallet is secure, blockchain is secure. All reported cases of people losing their private keys have always been due to phishing attacks or simply the personal user getting malware, hacked, et cetera.

Find out how it happened to you. Sweep your computer for malware. Make sure you only bookmark secure MEW site. Never click on links ever.

When you login to any online wallet or private key one you should not surf that wallet on Google and login to it. This issue becomes normal one every newbies. If you access your private key with different wallet which has the same kind home page and every other pages. In that way you are sharing the private key hacker.
There is no possible way to know your private key except this.

Future security measures.
Always access your wallet with the correct URL.
Check whether the URL secured with the https protected by MYETHERWALLET LLC CALIFORNIA US.
Then go to access your wallet with the private key.

You made a mistake, do you remember something if you accidentally click an unknown link? Or does somebody send you a link of myetherwallet site. Maybe be your a victim of phising.

Myetherwallet.com is a protected wallet itself, it uses an open source alogrithm to keep generated keys out of their database, thus you have no reason to blame them. However these cases take place when you mistakenly share your private key in public. For your security, i suggest to create a new wallet and keep the keys out of public access

Yes,most of the victims copies their private key on the fake MEW or the hackers stealing them phishing link so it is important to bookmark the original MEW site to be safe from the clone sites and keep the system offline when it is no needed and use etherscan.io to keep tracking the transactions no need to login to the wallet.

There are several reasons, you were either victim of phishing site, you have keylogger or you typed your private key on public place(which is less likely).
Try to remember what link have you clicked and which site have you visited.

Keep your wallet's private key on your personal USB stick or on your computer. I knew personally some of the people who lost the tokens from the myether wallet. It is all because of the phishing the sites which is comes in adword ad.
They need to access their wallet with the correct text combination of the wallet site. I see some people already quoted this still people are querying is on multiple threads.

Sorry to hear that.
Use Cryptonite add on
https://chrome.google.com/webstore/detail/cryptonite-by-metacert/keghdcpemohlojlglbiegihkljkgnige

Use Myetherwallet offline.
https://myetherwallet.github.io/knowledge-base/offline/running-myetherwallet-locally.html

There are lots of factors why you have been hacked by someone. Exposing private key would really be easy when you got phished. Logging in into a fake site and do input your keys and the hacker do already have that information and directly access wallet and transfer all of tokens inside it.Another scenario which you do have an infected computer which hacker did able to put key logger or malware that do able to get private keys.There are lots of scenarios actually but things I do mention is the most common ones.

I think many people are still confused about what MyEtherWallet is. MyEtherWallet is NOT a web wallet. They do not store your funds. They do not collect or transmit your sensitive information (like your password or private key). You do not have an account with them. MEW simply gives you a way to interact with the ethereum blockchain via their UI. The ONLY thing they send is your ETH address in order to get the balance and when you generate a TX, they broadcast the signed transaction to the blockchain. That's all.

MyEtherWallet has never been hacked, as far as I know. 'Hacks' usually happens due to the user accessing a fake MyEtherWallet site. Aka phishing.

Myetherwallet is a good website. That website always beg people to protect themselves from hackers by bookmarking the site, not to open your wallet with your private key. You might revealed your private to hackers at the process of checking your balance with your private key. You should have used your address instead, or probably you were phished. Technically, you have not been careful.

I remember the last I visited is AIRDROP.I joined 3 AIRDROP I used myetherwallet..then i send ethereum from spectrocoin wallet then I sleep..when I checked after other day I saw my ethereum Bal was 0.then I checked eetherscan transaction I saw all my coins are out..😭

You sent your ethereum from your spectrocoin wallet so how much ETH you are about to receive?

Are you sure that the transaction from spectrocoin is of a success? Your wallet has been sucked out by those hackers and what are those airdrops required you to do so?

What are those 3 airdrops?

i agree fully with that advice! one small addition is that "github" does provide a nice substitute to public usage... and the instructions for using myetherwallet on a local machine is given fully on their website" so to keep things even more private you can also use your own private and local copy on your own computer so it never leaves your possession.

if anyone cannot figure out how to do it, you must have tried "diligently" then send me a PM and i will try to help get it running.

Most likely you used a fake MEW website which have recorded your private key.

I suggest you check the website address properly before entering your private key.

Also, I suggest you use key store file instead of private key to decrypt your MEW wallet. Key store file uses your password to encrypt your private key. It provides another level of protection.

I think your pc was infected by phising website, that is imposible if hack by send eth to the other wallet, be ware your pc from unkown sites

This is also the risk of joining some airdrop because the chances of hacking os high as we sometimes accidentally enclosed some informations in their form. Losing your coins without your knowledge is the biggest nightmare that every trader doesn't want to happen.

I can assure that myetherwallet or other wallets are safe and the only possible way for your coins to get is to have an access to your personal crypto wallet, possible reasons for that is you log on to a phishing site were as the hacker get an access to your private keys or someone knows where you store your private keys like accessing your computer. Just be careful next time, take these advice coming from me as well as from other users seriously in order to avoid your funds getting stolen.

Its up to the users on how they keep thier private keys. Hackers will do evrything to steal it ,so they must be aware on every attack that will be made by hackers, or sometimes users are being hacked because its also thier mistake

certainly it is the responsibility of each and ever person to secure his or her funds. and it is a huge help to those that understand less then some on how to secure them. there are several ways and unless this thread will become a tech improve area it would be hard to give a single way to safeguard all funds properly. hackers will be hackers and will do absolutely anything to achieve their goals. its kinda like their job... lol
so to stay in-front of those mal-intention individuals it takes a lot of knowledge and persistent improvements by the community.... and the community to propagate these improvements!
so maybe we all would be ahead of the game by trying to help  and not simply run rampid with i say u say he say she say and it say

You are a victim of a phishing site. If your problem is true then, there would be a lot of complains now , and people would not trust MEW anymore ,
Hacker cannot access your account unless they know your private key, always check the site if its correct and bookmark it.

Mew does not hold private key for us so it is our responsibility to keep it safe and they never know what is our private key.We need to aware of phishing links and clone myether website.I assure you private key is completely safe but keep that private key safely.

You are probably hacked by a phishing attack, always double check that the link is well written.
It is better to bookmark the MEW page.

This thing was on my mind which isn't being included on my previous post on where lots of people do misinterpret on whats MEW.It really isn't it a web-wallet which have being said they don't posses anything yet you are the ones who do create your own address and privatekey and creators have nothing to do with those valuable informations and they don't have the possession of those keys.This is why talking on MEW being hacked is totally irrelevant.

In this case from the opening post of the thread it is clear that some mistake has been done by Op. Probably he might have entered the details into any of the phising websites that resemble same as mew. Without this it is impossible to hack one's account.

As suggested, you most properly used a wrong link
 If possible, double check your chronology

Nothing to do with myetherwallet whatsoever. Myetherwallet does not hold your private keys or your wallet file and your wallet file is actually encrypted by your password. You must have had security flaws in your computer system or was on a phishing site.

We do not know what exactly happened, anything could have happened.

Your computer could be infected by a virus which takes your private key and redeems it for ETH. Or, you could have accidentally revealed your wallet file/private key to another party that took the funds.  Or, it could have been a phishing site. Nobody knows. BTW, what is "used as a gas to get all my coins"? Did he spend all of your ETH on paying transaction fees?

Cheap move by hackers, but it worked. Be aware of phishing sites.
They are harder to spot these days, but you need to be more careful about frauds.

Why couldn't they have a heart to feel how much pain it is to loose the amount of money you work so hard. My friend had been hacked too just lately and the same thing happened the coins werebtransferred to another account. It's sad they are creating fear among coin holders.

Yeah you are right it is not web wallet but most of the newbie think they are controlling our private keys.But at the time of wallet creation they clearly mention that keep you private key safely if you lost the private key we can't recover it for you.So it is the people's fault that not aware of what they are doing.

If you do have the habit on not reading up important information or cautions then most of the time you would end up on having a problem since you didn't avoid the things that musnt supposed to do.Its not their website to be blamed of but to yourself since you do have the full control of your keys and its being reminded since from the start therefore if you got hacked then its your own fault and theres nothing to be blamed of but yourself.

That's why you should keep tokens on 5-6 wallets and keep a small part on the stock exchanges. The incidents happen periodically, but due to the division you will reduce the risks

They never learn from past mistakes, they are not taking MEW's warning since then that bookmark the website itself to be secure. What they do is just typing it on their browsers and depending on the search engines and they are not aware it shows those fake ones with misspelled letters.

For your private keys to be safe is not the work of myetherwallet or any other wallets provider, it is your duty to keep your wallet private keys safe. I saw a guy that fill a bounty Google Doc form with his private key and I was surprised why instead of putting public keys he put his private keys and if I am a bad person I will move his tokens and ethereum in his wallet.

Maybe this is a phishing scheme
where criminals have your sensitive or confidential information (such as credit card details) by pretending to be someone you know or have a reputation for. The perpetrators of this crime usually use email, social media or websites with the same view 100%.
If you actively use Slack as a medium to communicate and work as a team, then one of Slackbot's Slack functions often sends messages on behalf of an Ether Team or a specific ICO Team and requires you to do something.
For example, notices about Segwit or Hardfok or anything else. in the message you are required to login in your wallet account through the link they provide. Usually the link will take you to the website exactly the same as the original website, but if you look carefully at the domain name and other details, then obviously, that website is a hoax. The same thing often happens on sites that promise to give something amazing for free, you should be suspicious and should avoid visiting sites like that. Believe me, there is nothing free under this sun except oxygen.

Oh, I saw this topic headline and I was in need to check it out.
But As soon as I read your post I have just one word for you. Phishing.

Private key option in mew is not safe and mew does always warn it just before you create and log in your account. there were better option to unluck your account in a much safer way, some of them is by using a metamask ( chrome and firefox add on ) ,  .json file , paper wallet , hardware wallet such as trezor , mist , etc. that is the best alternative method to use instead of using a private keys to unlock your mew account. you can avoid phising attempts and hacking attempts if you follow these safety practices.

Maybe your pc is infected with malware or because you shared it with someone.

OP didn't come back to give some clarifications, but despite of the "strong" title this is just a clear example of a successful attack on his pc, not priv keys

I don't comprehend what is your concern? How might anybody take your private key by sending ethereum to the address? Stunned. I figure you may went into the clone MEW site where the programmers used to duplicate your private key and after that your assets were stolen.But any probide your wthereum address then we can comprehend what was the issue here.

I agree I guess it is his fault. Private keys are safe unless you hand them over to other people.

One needs to utmost take care of their private keys and save or store it in the offline mode. Either right it down and keep it where only you can access it and not shared with anyone obviously. Even while sending or mentioning address you need to be sure that you are not sending private keys and even if somebody asking you due to any reason it is an alert of scam.

If you are fond of signing up to various sites, especially those who offer free tokens, free cash, or any sort of good thing for free, those might be the reason, there is a possibility that you have registered into a phishing site.This is why it is important to always check that URL bar above if you are in a safe site and you are accessing a genuine website. Another possibility is you have exposed your private key somewhere (on google forms for registration in bounty campaigns and airdrops, etc.)

Such mistakes are common and i have experienced on seeing those guys who mistakenly put up their private keys instead of their wallet address which would result into hacking and not all people are kind enough not to access those wallet yet keys are already been exposed.They think most of the time on accessing it and stole those tokens inside of it without minding about their conscience as long they can get easy money if they are lucky they would hit up a very big balance but basing on my experience most of them are just new wallet being created by newbies which do mistakenly put up their keys on ss.

Exactly, OP should understand as long as of you don't share your private key with other you will be in safe. Most of the companies will never ask you for the private key, even the ICO website including it.

Private key remains safe until it is made public then it is no longer private key. Some people save these private keys in a notepad they drop anywhere, some save it in their unsafe mailbox, some even save it in a text document on a public computer's desktop. Some download the JSON key and leave it in the downloads folder of shared devices. There are scam emails that tells you that an attempt was made to access your account and was blocked. To unlock your account, you need to add a 2FA and in the process, they ask you to decrypt your wallet with your private key. I have seen more than enough mistakes by people, especially the newbies in crypto system, in handling of private keys. You have learn his to safely secure your private keys for it to be safe

Maybe you send your private key instead of your account, sometime people mistakenly do that, that's why before giving any account number check it carefully since private key and account are same both combinations of number and letters

To be simple it was happen because you failed to kept your private key, because private key is unique no one can know that aside from you and the system of ether wallet. If you notice the private key were compose of alphanumeric together with small and large letter, so it is impossible to take it in one blink of eye. To many users, its better if you cannot save your private key into your PC or in the phone, because many intruders taking that chance to get your amount in your wallet.

I do save my private keys on my pc and also in my cellphone and so far i did not experience any problem. I do also use myetherwallet for a verry long time up until now and i also didnt experience to get hacked. Maybe the op has accidentally paste his private key on an an aidrop or on a bounty form , because anyone can always take a look in the spreedshets.  Phishing sites is also another factor that i can think of. You know , mew is verry popular when it comes to phisihing sites. this is because mew uses a private key as primary tool to login your account.

Yes, me too I save my prikey in my pc and my phone until now it's very safe. I don't often see myetherwallet, just once a week to make sure the tokens I have still there or not and see the price conditions. In OP status is indeed a lot of possibilities, there is the possibility of too often open myetherewallet will be seen by hackers or log in at MEW fake site.With the rise of cryptocurrency at the moment, most likely the focus of the hackers is the users of cryptos. What makes our wallet safe and not, depends on our own.

You get phished or probably get hacked. Or you key in the private key somewhere in public chat.

you may have web fishing, so what you input has been seen on their web. just as with every activity you perform, will be visible to the web. my friends are exposed to link fishing. so to prevent that I make metamask, and my friend uses it after changing the address.

Private key are not safe these days. I've had this experience.

You may have overlooked the wrong website, 1 letter wrong then all is absolutely wrong. So I keep in bookmark the right MEW website.

The private keys are safe but the website you logged in to maybe was a phishing site that's why the hacker got your information and took all your coins and tokens from you MEW account. That there is not safe. You have to bookmark the correct website and make sure before you log in that it is the correct one.

Private keys perfect safe one. You can able to check richest bitcoin address also with the blockchain explorer but none of hacker cannot do shit to that wallet because encryption with the private key much safer than your bank locker.

If you say private key is not safe means you are good at using the bitcoin wallet as well. Go to beginners and help for learning all the basics about bitcoin and wallet usage.

Private key is safe as long as you store it in a safe. A good safe box, not a cheap one.

Nobody can hack your private keys. The hackers wont get your private key unless you give them. I suggest you to get a pendrive and store your passwords and private keys in that. Also dont give your private keys to anyone and allow your trusted buddies to use  your laptop or pc. Also dont try to open your wallets from internet cafes. Its not safe.

Maybe you put your private key in the place that are able to see by the public, Maybe you put your private key instead of eth address that is why you wallet is not safe anymore.

Yes, I do love also to know them, posting the ETH which was your wallet sent this token can be a helpful info on this forum to track down this person, maybe he has an account here and at least mentioned this three coins for other to know not join any future transaction with its team members.

most of times it happen either bcoz of entering you key on phishing site or sharing it for airdrop .
better to use metamask for safe transaction .

Yes, you are right private key is always safe and cannot able to hack the private key, it is possible through different MEW links. That's why we have to check the links whether it is phishing email or correct by checking it multiple times.

No need to buy safe to store private keys, you can use trezor or ledger nano.
In case of paper wallet just hide it somewhere, if anyone will ever rob you there is very slim chance that the robber will know what is private key.

The recent hack does not require the private keys, sometimes it could go beyond the familiar password theft. However, the password safety precaution has been a regular discuss on this forum. This are reasons why this forum was established to educate ourself on new development in the crypto community. There can still be some exception with how hacking can take place but not where safety precautions are followed.

Do you share your private key to someone else? if that not, you are a victim phishing web. To get into a MEW account is hard for someone, private key is a complicated number that no one can memorize. And this possibility is not because of private key.

Now cryptocurrency has become popular. Many new people are interested in investing in cryptocurrency because they are confident of getting rich in the near future. This is what causes hackers to maximize and focus on stealing profits in cryptocurrency. I have read some news, someone who lost a lot of ethereum on MEW account, and after searching for him logged in at the fake MEW site hacked by hackers. This is called phishing web, a hacker makes a site fake to steal prikey and even the investment we have.

i use metamask -> no problem  ;D ;D

devtev (http://devtev.com/)
review (http://devtev.com/review/)

For your main ethereum account never store your private address on an hard drive. Print it on PAPER and store it in a safe place !!!

maybe you have accidentally clicked the address of fishing. and after that whatever you do has been recorded in her web. so he can know the activities you do. you better make a new eth wallet.

If you are a keeper and very meticulous to every security measures you should've double check your computer first before doing any trade. Sometimes the fault are in the users and not in the program that we are using because if i am the developer i would do everything to protect the information of all of my clients but then again i can't do it all alone without the help of my client. It is your own responsibility to take counter measures to your personal information specially when it involves money.

private key is safe bro dont get involve to others who is talking his private ket got hack.. just stay and calm bro

Either way bro. Im sorry for your loss. Try complaining it to the admin. Maybe they can help you

I have never experienced anything like this
you may enter in myetherwallet with private key not with keystore / json file
the matter of my friend once said too dangerous if we login in myetherwallet with private key
different from keystore / json files that are guaranteed security

Some people claim quamtum computing will make your sentence wrong. But as far as we know today it is rather impossible indeed.

If you feel dangerous about the private its better to check the MEW link twice because you need to secure your wallet. In offline how securely your keeping password to bank accounts and in the same way you need to keep MEW account in the same way.

Private key is safe and I don't think your account can be hacked except if you mistaken clicked on another link thereby exposing your account information to hackers. Myetherwallet is a good website. You should be very careful when imputing your informations or during transactions.

It's kinda weird of thinking someone is being hacked. The private key is completely safe to access. I mean Always was, will be continued as what I believe. Make sure to bookmark the site, as you just need to be sure you go to the correct site and don't get redirected somewhere.

There's no problem if you guys are using MEW (Myetherwallet) for receiving your Ethereum or any ERC20 tokens.

The problem is you are being phished, YES!

You logged in to a website that looks like MEW and you put your private keys into it.

The solution to this one is don't be so ignorant with the website you are visiting especially if your private key is at stake.

Bookmark MEW and your problem is done.

your explanation is so unclear that I find it hard to explain, when your account was hacked how it started and how is it possible if you use double security.

I'm not sure I understood your situation. But from what I have understood there are several reasons possible. I mean why that happen:

• you fall victim of phishing site
• you have keylogger
• you mentioned your private key somewhere on public

Hi.

You really should pay attention to his private key. Something similar happened to me. Be that only USB stick and the old-fashioned way to write on a piece of paper. When it comes to money, you have to be really careful.

dont ever used that wallet again cause is now being monitored by the hacker every coins that will arrived in that address will be sent to the hackers wallet immeditely.

Even though you bookmarked the mew site , private keys option is still unsafe for unlucking your mew account because you can always get easily hack wherever you accidentally paste it somewhere like for example on the bounty or airdrop form , some people mistaken their eth erc20 adress to be their private keys and as a result hackers can enter their wallet silently. But anyways , your suggestion is still good and would greatly lessen the risk of phising and hacking attacks.

Everything will work when we have some backup only if we have secure wallets by protecting the private keys. Once if they loose private key it is impossible to recollect private keys.

why it can happen if we know that myetherwallet security is very good almost using some verification first maybe you have been mistaken with what you do when transact so that your wallet is still open and it makes it easier for hackers to steal your coins.

first of all quantum computing is still dream of future which is not near .
2nd thing if we able to achieve it then we will solve many such problems , and at that time tech of wallet providers also will be advanced . we may see something new like btc in 2008 .
till then we can enjoy current blockchain tech .

yeah maybe

i guess this gay got a phising attack. thats why his MEW hacked

i told you dont tell anyone your private key dude
keep them safe, and always check the web of MEW www.myetherwallet.com  ;D ;D
everyone can got phised if they're not carefully.

why it can happen if we know that myetherwallet security is very good almost using some verification first maybe you have been mistaken with what you do when transact so that your wallet is still open and it makes it easier for hackers to steal your coins.

No one will answer to his because already he maintained double security but how can the hacker steal your money. It means maybe the person clicked the phishing link and this might be chance for the hackers to steal the coins in ERC20 wallets.

he is right until now it is impossible for someone to get someone else's private key unless they are cracked by mengklick the pising link

Private key is not safe if you dont know how to place them in a safe and secured place and if youre aware to different hacking attempts.

MEW does not hold your keys for you. We cannot access accounts, recover keys, reset passwords, nor reverse transactions. Protect your keys & always check that you are on correct URL. You are responsible for your security. So its impossible to steal your funds in your wallet without undertaking some of phising sites.

The fault will be from you because there is no way another person will know your private key if you keep it safe and you are careful with how you display your information especially when you try to access your account. Private keys should be kept private and avoid exposing it to a third party and do not use a third party web service when trying to access your information.

It's also possible that hackers able to penetrate your computer or your device private keys is your obligation to protect and avoid being hacked, but since hackers will do everything as well better to do extra effort to avoid being penetrated by  this evil doers, we need to be more responsible if we wanted to
continue and being safe inside this industry.

The most possible that the hacker did is not steal your private key with you but I think he uses some site wherein you used your private key to open your account, some are using this thing to have a look in your account key when you use it even just one time, so next time careful with the site you use.

Recently there way myethereum wallet hack and people lost money which isn't their fault, etherdelta hack too. But mostly it is their fault, they download suspicious file with keyloger or they enter private key into phishing site without knowing it is phishing site.
Private key is safe, people are doing terrible mistakes.

You are not correct mate. When you use the private key with the phising site you will be having possibilities to loose the fund with the MEW wallet access with the scam site access mate.
There are many fake sites are there in the market like that to steal your fund.
If you have private key secured there is very possibility to take the fund.

Why do you think so? Can you tell me about your experience?
Because I still use a private key. If you're right, I'd like to buy a cold wallet.

I hold part of my funds on MEW and always use JSON file + password verification. It would be even safer to use it in tether with MetaMask, but I'm a bit idle moving my eth there.

I think you might go to the clone MEW website where the programmer is used to duplicate your private key and after that your asset is stolen. But, if you know your ethereum address, then we can understand what the problem is here. I do not understand what your worries? How others can retrieve your private key by sending ethereum to a Specific address

this is according to what I think, I believe the time used to be when you become bounty. you never register bounty using PRIVATE KEY obviously everyone will be able to see your account. because many people are like you, your guard keeps P.P.K .