https://etherscan.io/address/0x29d7d1dd5b6f9c864d9db560d72a247c178ae86bWarning! DO NOT SEND ANYTHING TO THE ABOVE ADDRESS.
Enigma team hacked completely, seems like all accounts and servers compromised
Hackers sent false address via official Mail and Slack
almost $500k stolen.
Terribly, and most ironically:
http://www.businessinsider.com/ethereum-price-ico-hack-2017-7?r=US&IR=TThe CoinDash hack didn't occur because the blockchain system itself was compromised, but rather because the website on which the smart contract address was being advertised was compromised.
"Hackers got into the backend of the site and changed the address," Kisagun said.
Thus, investors sent their money to the wrong Ethereum address.
"Whether it’s on a website, or through social media, providing a funding address in a single location isn’t sufficiently secure," Guy Zyskind, CEO of Enigma wrote in a recent blog post. "Therefore, we need a more secure kind of proof of address."
Enigma's solution is to hard wire the address of the token sale contract into the Ethereum or bitcoin blockchains when it's created. Since information on the Ethereum or bitcoin blockchains can't be tampered with, hackers wouldn't be able to alter the address.
Of course, the people behind ICO could be scammers themselves. Therefore, to assure they're not just faceless crypto-scammers, Enigma is proposing to store two other pieces of information into a multi-sig contract to serve as further proof of address:
A picture of the team initiating the ICO holding a piece of paper with the smart contract address on it.
Social proof that trusted parties approved the address. This can be done by having the parties disclose their public keys on their Twitter feed.
According to Kisagun, Enigma is looking at ways to employ similar strategies for its upcoming token sale.
Oh man.....
