s2break (OP)
Member
 Offline
Activity: 518
Merit: 23
Trading Platform of The Future!
|
 |
February 12, 2018, 07:43:24 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
|
|
|
|
|
|
|
|
Make sure you back up your wallet regularly! Unlike a bank account, nobody can help you if you lose access to your BTC.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
NorrisK
Legendary
Offline
Activity: 1946
Merit: 1007
|
 |
February 12, 2018, 07:48:22 PM |
|
It might look easy to create different addresses this way, but because there are so many combinations, the chance of hitting a wallet that already exists is extremely small.
A quick calculation (not accounting for fixed numbers or letters at start for instance):
That private key has 64 characters, including lower case letters and digits 0-9. This means there are 26 + 10 = 36 possible options on each location.
36^64 = 4.0*10^99 combinations.
That would literally be impossible to crack ever.
|
|
|
|
|
Jeepney_koh
Jr. Member
Offline
Activity: 182
Merit: 2
dApps Development Automation Platform
|
|
February 12, 2018, 07:56:57 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
Myetherwallet private key has 64 characters in all. If you calculate the probability of getting the rivate key of one address, it may take you more years or not even have the chance to hack. Hackers intelligent ones if you do not keep your private key secured. For example when people join bounty, they put there privatenkey instead of address. When they open mew, they choose the phising site. So just be careful and you wont be hacked. |
▬▬▬▬▬▬▬⬢ Buddy ⬢▬▬▬▬▬▬▬
Decentralized Development Automation Platform
▬▬▬▬▬▬▬⬢ token.buddy.works ⬢▬▬▬▬▬▬▬ |
|
|
BUSTEDCLUB
Member
Offline
Activity: 65
Merit: 10
|
|
February 12, 2018, 07:57:23 PM Merited by hurry_hore (1) |
|
I can type random number from 0-9 and include random char a, b, c, d, e, and f that random char will be ethereum address too. But that address doesnt have any ether or token isnide it anyway. My point is you have to try this much 36^64 = 4.0*10^99 combinations.
and not gonna happening though read this, this is actualy for bitcoin but work same as ethereum private key  |
|
|
|
|
Ewok
Newbie
Offline
Activity: 3
Merit: 0
|
|
February 12, 2018, 07:59:56 PM |
|
As others have said, its incredibly unlikely (as in would take millions of years if not more) to crack individual wallets. As for 2FA, myetherwallet isn't actually a wallet per-say. It's an online interface to interact with your wallet. It works the same as if you downloaded a wallet application and input your private key there.
|
|
|
|
|
|
paulmaritz
|
|
February 12, 2018, 08:03:07 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
If you're scared, always interact with MEW via the likes of MetaMask or hardware wallets such as Trezor or Ledger. |
|
|
|
|
|
zenhu
|
|
February 12, 2018, 08:04:11 PM |
|
There is a lot wrong with this picture. None of the 3 cryptographic primitives used by Bitcoin (SHA-256, RIPEMD-160, ECDSA) are proven to be absolutely secure. It is possible that a flaw in these may be discovered. Even ignoring some possible unknown flaw in the algorithms this picture is using a poor example. It is assuming a security level of 256 bits, while the actual security level of a Bitcoin address is 128 bits. Bitcoin does use 256 bit private keys but the security level of ECDSA is equivalent to half of the key size (which is pretty good compared to RSA). Same goes with ethereum, and yeah still uncrackable. |
|
|
|
|
paulmaritz
|
|
February 12, 2018, 08:05:18 PM |
|
In addition, remember that your tokens and private keys are not kept on MEW. MEW is just a means to access the Ethereum blockchain easily and securely.
|
|
|
|
|
Bolt Brownie
Sr. Member
Offline
Activity: 700
Merit: 350
Betting Championship betking.io/sports-leaderboard
|
|
February 12, 2018, 08:13:04 PM |
|
Well MyEtherWallet itself can be hacked since it's a website. Even if the site isn't directly hacked you could be victim of phishing or other attacks. The best option to get extra security is to use metamask or similar options. It's the same thing with etherdelta for example. They were recently hacked, and a lot of users lost some funds because they were putting their pk directly into the hacked site. Had they used metamask to interact with the exchange, they would be fine.
As for your doubt regarding the security of pk itslef, I think they are secure. It's easy to think otherwise with your example, but you can't really fix chars like that, and a brute force attack would still need to use the other combinations and would go no where. If it was easy to do it, I'm sure we would have known that by now.
|
|
|
|
|
BUSTEDCLUB
Member
Offline
Activity: 65
Merit: 10
|
|
February 12, 2018, 08:25:55 PM |
|
Well MyEtherWallet itself can be hacked since it's a website. Even if the site isn't directly hacked you could be victim of phishing or other attacks.
Yeah the website can be hacked but since that website have no DB to save your PK ( i guess) its still save. And phising can be avoid by login through metamask. More secure and have a warning if some website you visit is a fake website try to do some phising. |
|
|
|
|
|
antolinicio1
|
|
February 12, 2018, 08:33:25 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
I do not think it is possible unless it is your own mistake, you should waste your whole life trying to get right password for someone's wallet, MEW has the same answer on their FAQ. |
Long Bitcoin , Short the Bankers
|
|
|
LuckyBtc
Legendary
Offline
Activity: 1288
Merit: 1011
|
|
February 12, 2018, 08:41:41 PM |
|
Just download MEW offline and run it if you're so worried or buy a hardware wallet. MEW is just a ETH client and can be victim of DNS attack. Private keys cannot be guessed or cracked easily.
|
|
|
|
|
|
hah
|
|
February 12, 2018, 08:46:39 PM |
|
You might use a phishing fake MEW website but the real site is secure and should be safe. Watch out for the latest news incase something do go wrong though.
|
|
|
|
Kosscoin
Member
Offline
Activity: 392
Merit: 11
|
|
February 12, 2018, 08:55:42 PM |
|
If you be careful and do not go to phishing sites and keep your key and password securely, do not enter this information where not, then I think that your wallet will always be safe. Basically, the whole problem of losing funds from the wallet is just the transition to phishing sites. Be careful and careful.
|
|
|
|
richan
Member
Offline
Activity: 392
Merit: 11
|
|
February 12, 2018, 09:10:43 PM |
|
It is not possible to land another account full of ether. I tried changing my private key by substitution some of the figures and numbers but all I could do was to generate a new address rather. It might take you years before you can land another address which is already occupied by another person.
|
|
|
|
|
|
setifien19
|
|
February 12, 2018, 09:13:47 PM |
|
MEW is well known as one of the safest wallet . Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
This might be a stroke of luck ( probably if you change one supplemental character , you won't get another wallet ) 36^64 = 4.0*10^99 combinations.
Yes it's very hard to find a coherent combination among these possible ones |
|
|
|
|
|
hase0278
|
|
February 12, 2018, 09:16:07 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
Myetherwallet itself cannot be hacked easily and the method you are pertaining to here will not get your account hacked since like what others said it would take many years for it to succeed. Although that is the case, myetherwallet can be hacked in many ways, not just phishing. I don't know what specific ways a hacker can do besides it but I am sure there are.many more methods other than that so be careful in downloading anything. If you don't feel secured, feel free to buy a hardware wallet like ledger nano s. |
|
|
|
|
|
vasil777
|
|
February 12, 2018, 09:19:42 PM |
|
Hi guys!
I’ll tell you what I think.
I'm feeling anxious about MEW security.
If we change some characters of Mew prative key, we will get to anather wallet.
Exampe:
Prative key wallet 1: a1e57f1422ae77c1c51f1626d6cbd6ad376f184976a0e83b430ed7e8c66e998d
Prative key wallet 2: a1e57f1422de77c1c51f1623d6cbd6ad376f184976a0e83b430ed7e8c66e998d
After i change characters on wallet 1 a = d & 6 = 3, i get wallet 2.
Question is, can MEW be hacked easily? This can be dangerous for investors.
And why MyEtherWallet not connect to 2FA? This is a good measure to protect our wallet.
Guys, What do you think about this?
It seems to me that the MyEtherWallet is a pretty reliable wallet and it's not as easy to crack as you described. Recently, many purses have been broken by the fault of the users themselves who indicate their private key on various sites. |
|
|
|
|
|
andthereyou
|
|
February 14, 2018, 05:22:34 AM |
|
Yes it's possible. But who want to do trial and error just to get a private key with ETH or ERC20 token inside?
If I were a hacker I will not waste my energy doing trial and error cracking MEw wallets with millions of millions combination. It would be better make a phising website than hoping lady luck will favor. (chuckle)
|
|
|
|
|
saieshprakash18
Newbie
Offline
Activity: 28
Merit: 0
|
|
February 14, 2018, 05:42:11 AM |
|
always protect with a very strong password and secure your private keys
|
|
|
|
|
|
