Bitcoin Forum
November 14, 2018, 10:10:08 AM *
News: Latest Bitcoin Core release: 0.17.0 [Torrent].
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: Safe use of WEB Wallet  (Read 165 times)
redtag070
Member
**
Offline Offline

Activity: 128
Merit: 10


View Profile
July 27, 2018, 09:55:45 AM
 #1

The other day, MEW 's wallet was taken over.

Apparently, I seem to have written a private key at the phishing site.


How to use WEB wallet to not fail like me.
Please tell me what you are doing, such as when you use or save PW.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1542190208
Hero Member
*
Offline Offline

Posts: 1542190208

View Profile Personal Message (Offline)

Ignore
1542190208
Reply with quote  #2

1542190208
Report to moderator
1542190208
Hero Member
*
Offline Offline

Posts: 1542190208

View Profile Personal Message (Offline)

Ignore
1542190208
Reply with quote  #2

1542190208
Report to moderator
1542190208
Hero Member
*
Offline Offline

Posts: 1542190208

View Profile Personal Message (Offline)

Ignore
1542190208
Reply with quote  #2

1542190208
Report to moderator
harizen
Legendary
*
Offline Offline

Activity: 1344
Merit: 1056


View Profile
July 27, 2018, 10:51:24 AM
 #2

The other day, MEW 's wallet was taken over.

Apparently, I seem to have written a private key at the phishing site.


How to use WEB wallet to not fail like me.
Please tell me what you are doing, such as when you use or save PW.

I think you pretty save your Private Key on a safe note.

However, you admit that it seems you are a victim of a phishing site. No matter how secure our private key or password is, if you input it on a phishing site then there is a chance that it will be compromised.

Next time be aware on what site you are inputting your important credentials.

MadGamer
Legendary
*
Offline Offline

Activity: 1302
Merit: 1016



View Profile
July 27, 2018, 11:40:34 AM
 #3

All phishing attacks seem to target Myetherwallet domain name, use MyCrypto instead, It's the same with more features.

If you ever type your private keys, or upload your JSON file at a phishing site, you're basically at the mercy of the attacker, there is nothing that can be done to protect yourself from that, just be vigilant.


¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦
¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦
¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯¯¦¦¦¦¦¦¦¦¦¦_
¦¦¦_¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_
¦_¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦
.XERA.¦
¦
¦
¦
¦
¦
¦
¦
 
[/center
Alluro
Member
**
Offline Offline

Activity: 392
Merit: 17


View Profile
July 27, 2018, 11:48:33 AM
 #4

The other day, MEW 's wallet was taken over.

Apparently, I seem to have written a private key at the phishing site.


How to use WEB wallet to not fail like me.
Please tell me what you are doing, such as when you use or save PW.
The first thing is don't put your private keys anywhere like airdrops and bounties. Next one is checking twice the official Myetherwallet website or not and keep in touch with Myetherwallet social media updates. In my opinion is you can use Metamask in your web browser. You can use Metamask safer than Myeterwallet.

SFR10
Legendary
*
Offline Offline

Activity: 1260
Merit: 1177


SFR DESIGNS - http://bit.ly/2ClWYOh


View Profile WWW
July 27, 2018, 11:50:06 AM
 #5

Next time, access those web wallets from a saved/bookmarked link instead.

On a side note: None of the web wallets are safe.

madnessteat
Member
**
Offline Offline

Activity: 252
Merit: 25


View Profile
July 27, 2018, 01:02:21 PM
 #6

I suggest to go only through the bookmark on the official website of the MEW Wallet. When you open the site, check all the address symbols (often change "a" to "á"). I apologize for my English.

DRIFE  ●●●●●●     Pre-sale: December 2018
██ BNEXGEN DECENTRALIZED RIDE HAILING PLATFORM ██
  ●●● Facebook ●● Twitter ●● Telegram ●● BTC ●● Whitepaper ●●● 
GMule
Member
**
Offline Offline

Activity: 97
Merit: 10


View Profile
July 27, 2018, 01:14:48 PM
 #7

Next time, access those web wallets from a saved/bookmarked link instead.

On a side note: None of the web wallets are safe.

Is it safe to assume the best wallets are the core wallets?

▰   SEMUX   -   An innovative high-performance blockchain platform   ▰
■▬▬▬▬▬      Powered by Semux BFT consensus algorithm      ▬▬▬▬▬■
Github   -   Discord   -   Twitter   -   Telegram   -   Get Free Airdrop Now!
Dudeperfect
Hero Member
*****
Offline Offline

Activity: 1008
Merit: 531

★YoBit.Net★ 350+ Coins Exchange & Dice


View Profile WWW
July 27, 2018, 01:33:13 PM
 #8

As far as you have your keys on any website including web wallet service provider, don't expect security for your wallet. Crypto is all about self-responsibility and hence we should take enough security precautions to keep our crypto funds safe. I would recommend you to keep your funds in offline wallets such as a securely generated paper wallet or reputed hardware wallet. Web wallets are convenient but I don't expect security from them.

mjglqw
Sr. Member
****
Offline Offline

Activity: 756
Merit: 424


⭐ https://coinsources.io/


View Profile WWW
July 27, 2018, 02:59:38 PM
 #9

MyEtherWallet wasn't taken over(at least recently). You got hacked because of user error. You most likely clicked on a phishing link when you Googled "myetherwallet". The thing is, hackers can pay ads to Google for listing a phishing site version of the original MEW. So this wasn't MEW's fault. Unfortunately you learned the hard way; hopefully your losses wasn't that much.

Next time when using MEW, type the URL "myetherwallet.com" accurately on your browser's address bar intead of Googling it.

justin86
Full Member
***
Offline Offline

Activity: 406
Merit: 100


Market Integration Platform


View Profile
July 27, 2018, 03:19:09 PM
 #10

Use hardware wallets otherwise you can never be safe, that is also recommend by the wallet you use Roll Eyes so still entering private keys is nonsense and you accept losing coins.

TryNinja
Hero Member
*****
Offline Offline

Activity: 826
Merit: 798


ChipMixer's Badge of Honor


View Profile
July 27, 2018, 03:40:55 PM
 #11

To be fair, MEW's domain was "taken over" for some users due to the temporary DNS hack. Which means that some users who accessed the MEW domain where accessing a phishing website (even if it was showing as insecure).

The definitive solution is to download MEW's source code[1] and run it locally on your computer.

[1] https://github.com/MyEtherWallet

Thirdspace
Hero Member
*****
Offline Offline

Activity: 798
Merit: 609


Mixing reinvented for your privacy | chipmixer.com


View Profile
July 27, 2018, 11:57:09 PM
 #12

To be fair, MEW domain was "taken over" for some users due to the temporary DNS hack.
there is an official MEW Chrome Extension you can use to increase your security
However, I'm not quite sure if this Chrome Extension would protect you in such case above?
but this extension would definitely help you from falling into phishing sites Cool

TyRian
Newbie
*
Offline Offline

Activity: 30
Merit: 0


View Profile
July 28, 2018, 02:20:59 AM
 #13

The other day, MEW 's wallet was taken over.
Apparently, I seem to have written a private key at the phishing site.
How to use WEB wallet to not fail like me.
Please tell me what you are doing, such as when you use or save PW.
#1 When do creates web wallet, makes your your copy privates key at safe place
#2 For me, checking my wallet on web not recently, but usually i do download mobile wallet and install it on my mobile then linked your web privates key to your mobile wallet, as this is your mobile none can access it without your PIN. You can checking of your MEW balances thru you mobile without login to MEW webs frequently.
#3 Just login to MEW when you necessary want to doing anything transaction such as sending tx.
pealr12
Hero Member
*****
Offline Offline

Activity: 812
Merit: 500


EndChain - Complete Logistical Solution


View Profile
July 28, 2018, 02:58:38 AM
 #14

Put your private key in a secured place that your the only one who knows were it is. Make a copy or print it to have a back up, which is recomemded. Just be careful cause a lot of hackers will try to steal your private keys.

mjglqw
Sr. Member
****
Offline Offline

Activity: 756
Merit: 424


⭐ https://coinsources.io/


View Profile WWW
July 28, 2018, 03:19:52 AM
 #15

Put your private key in a secured place that your the only one who knows were it is. Make a copy or print it to have a back up, which is recomemded. Just be careful cause a lot of hackers will try to steal your private keys.

It would be a good idea if you would read OP's post first before commenting on it.

SuiMikira
Member
**
Offline Offline

Activity: 322
Merit: 10


View Profile
July 28, 2018, 03:20:13 AM
 #16

You admit to type your private key at the phishing site, so i recommend you bookmark the legit page https://www.myetherwallet.com/
Bookmark and only use it, don't search on the address bar or google some thing like MEW, myetherwallet, eth wallet... and click on the result links, never do it. The search results are not safe. You can install Metamask, a good and legit ETH and ERC20 wallet extension on Chrome and Firefox, this extension also warn you when you visit a fake MEW website.
Metamask legit extension: https://chrome.google.com/webstore/detail/metamask/nkbihfbeogaeaoehlefnkodbefgpgknn?hl=en

MyCryptoBank  ――  Legal and Reliable Crypto Bank
Whitepaper  ――  CRYPTOBANK FOR CRYPTOCOMMUNITY  ――  Announce
―― Medium ―― YouTube ―― LinkedIn ―― Telegram ―― Facebook ―― Twitter ――
pooya87
Legendary
*
Offline Offline

Activity: 1456
Merit: 1241


Buy bitcoin they said... who listened?


View Profile
July 28, 2018, 03:29:34 AM
Merited by Aleya (1)
 #17

the only way to stay safe is always going to be using cold storage!

using MEW actually allows you to do it in a somewhat easy way. here are the steps:
1. download the source to the website https://github.com/kvhnuke/etherwallet (verify if this is the right link yourself)

2. go to send offline tab. all the other steps will also be in this tab


3. (online) enter your address in step 1 which you want to send from. write down gas price and nonce

4. (offline) enter appropriate info in step 2. choose the right option from bottom of this step "How would you like to access your wallet?" (it usually is the last one: private key). enter the right information here and click unlock

5. (offline) move a little lower, click generate transaction and now copy the "Signed Transaction" and transfer it to your online computer

6. (online) go back to https://www.myetherwallet.com/#offline-transaction and scroll to the bottom of the page, step 3. paste the "Signed Transaction" from #5 here and click send.

7. do this as a test first to learn how things work, you can send a small amount and check everything then do it for everything.

mobilazy
Member
**
Offline Offline

Activity: 308
Merit: 22


View Profile
July 28, 2018, 04:18:40 AM
 #18

Web wallets are a pleasure to use but prone to phishing attacks. If you bookmark MEW and access it ONLY from that bookmark, you are quite safe. But bookmarks can be hacked too I guess, never heard of it but why not. Next level of protection would be using hard wallet like Ledger or Trezor. You can connect it to MEW easily and can almost guarantee your safety. Just make sure you're sending to the right address and you now 99.999% safe.

❰ ❰❰ ❰❰❰ ❰❰❰❰❰ ♦ SIMDAQ ♦ ❱❱❱❱ ❱❱❱ ❱❱ ❱
Learn how to trade profitable!
 Instagram ▼▲       Medium ▼▲      Telegram ▼▲    Facebook  ▼▲      Twitter ▼▲
MadGamer
Legendary
*
Offline Offline

Activity: 1302
Merit: 1016



View Profile
July 28, 2018, 06:49:19 AM
 #19

Is it safe to assume the best wallets are the core wallets?

As long as your computer have no malware. The hardware wallets are the only one that are truly safe, I suggest investing in one.


¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦
¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¦¦¯
¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦
¦¦¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦_¦¦¦¦¦¦¦¦¦¦¯¯¦¦¦¦¦¦¦¦¦¦_
¦¦¦_¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_
¦_¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦_
¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦¦¦¯¦¦¦¦¦¦¦¦¦¦
.XERA.¦
¦
¦
¦
¦
¦
¦
¦
 
[/center
CryptRoller
Member
**
Offline Offline

Activity: 322
Merit: 15


View Profile WWW
July 28, 2018, 07:37:52 AM
 #20

100% safety is almost impossible to reach, so the first rule: be paranoid.

If you visit MEW daily (without login in) you will increase the chance that you subconsciously notice if something is 'off'

Use Metamask (don't keep it open, just login when necessary)

Keep coins / tokens you don't intend to trade soon on a hardware wallet.

Don't follow links. Always type the url.

Keep your computer clean (virusscanners / anti-malware software)


Pages: [1] 2 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!