A hacking way of myetherwallet.

[shasan]

There are a lots of hacker in the genre of crypto. Few hacker hack myetherwallet that'swhy a lots of people loss all coins, ethereum, and future income on that wallet.

How it happen?
1. They collect email address from bounty campaign. Either they run scam project or collect emails from those campaign who takes email from participant. Hacker takes email from those bounty.
2. They usually send email like:







And on there they will provide you google form like: https://docs.google.com/forms/d/e/1FAIpQLScU9Q6hetInT2OpAjp5t6v1BypxA_bJj_PhVp28ooKm3CeDfQ/viewform or https://docs.google.com/forms/d/e/1FAIpQLSc0f2fGJarB_QVMmTNlY9ltmbAA7Fwj-Wmi5e75huK1kPBFeQ/viewform or something like that.

On those form you will get links like: http://myetherwallet-xyo.space/signmsg  or something like this.

Please see: myetherwallet's original link is: https://myetherwallet.com

So stay away if you see any mismatch on the domain for signing a message or make transaction. They can add few extra characters like: -xyo.space or http://myetherwallet-xyo.space/signmsg or something lie this or any misspell of https://myetherwallet.com

So, please be aware while you signin into https://myetherwallet.com

[1715182208]

1715182208

[1715182208]

1715182208

[1715182208]

1715182208

[nutildah]

Moral of the story: always be sure to double-check what website you're visiting before entering in any information. Same goes when you plan to connect to a website with Metamask...

[Kemarit]

Moral of the story: always be sure to double-check what website you're visiting before entering in any information. Same goes when you plan to connect to a website with Metamask...

Yes, that's correct, everyone should not just double-check everything, but think about 10x before clicking any link. Funny the OP has put Tedchain as a example because they have been exposed as scam months ago but this people will simply not stop.

[Onuohakk]

It's not possible to conceal your email address from the general public one way or the other your email address would be required when registering for something online so you can't possibly know which is meant for scam purposes..

If you take the necessary safety precautions you would be a bit OK.
I recommend 2fa authenticator

[CryptopreneurBrainboss]

Scammers develop new methods (messages) with the same old tricks (phishing sites). The only way is to outsmart them by been vigilante. The more we discover their tricks the more they create new ones. Did a topic on similar tricks few weeks ago

Received an email early this week then received another one today all with the aim of scamming mail recipients. The email goes like this,

Good evening. Welcome to the Binance team.

You are registered on our website Binance. We’ll let you know about the launch of AirDrop to distribute BNB coin media to our members.

You can get up to 200 BNB coins if you have completed all your tasks - AirDrop
You can find them in our form. (To avoid a novice user reading this and mistakenly clicks on link, i wouldn't post like to form.

And I just saw another method they now use, sending malware PDF to telegram group with titles of whitepaper or other title relating to project to deceive group members to open file.

Moral of the story: always be sure to double-check

In addition, verifying the information from the official social media accounts of projects ( scam mails are sent from). E.g you get a mail from binance, verify from their official twitter handle or telegram group of binance before opening mail. If they didn't send any, delete and block sender immediately

[shasan]

Moral of the story: always be sure to double-check what website you're visiting before entering in any information. Same goes when you plan to connect to a website with Metamask...

You are right. They may hack Metamask too. We should more conscious while we give authorization.

Funny the OP has put Tedchain as a example because they have been exposed as scam months ago but this people will simply not stop.

I have two email by name of two token/ico/company. It is not a fact what is the name of the token. The email sender may use the name of any ico. We do not need to give concentration what is the name of the company but we have to give concentration about the way of hacking and way of preventing. Both of my emails show same way of hacking that means it is sending by same people or same group of people. Hopefully think you have understood what I wanted to say.

I recommend 2fa authenticator

Probably you have missed something. You cant prevent it by 2FA.

And I just saw another method they now use, sending malware PDF to telegram group with titles of whitepaper or other title relating to project to deceive group members to open file.

You are right. I have noticed that too. Actually scammer trying to find out new way day by day.

[LbtalkL]

Moral of the story: always be sure to double-check what website you're visiting before entering in any information. Same goes when you plan to connect to a website with Metamask...

That is correct also check where the email is coming from some gets easily trick with this phishing so we need to be extra careful.
We can also prevent this by installing Cryptonite extension and bookmarked important site to avoid phishing.

Chrome extension - https://chrome.google.com/webstore/detail/cryptonite-by-metacert/keghdcpemohlojlglbiegihkljkgnige

[nakamura12]

I think the hacker used phishing technique to make the website look legit but the different is there's only one myetherwallet and no duplicate website like myetherwallet unless the hacker copied the content and the only different is the website. Some hacker use the same website but the difference is the letter had a dot under the letter or same as this letter "ą". Always bookmark the real site to avoid getting phished.

[madnessteat]

I think that clicking on links from strangers is just silly. Go to myetherwallet according to official address https://www.myetherwallet.com. Better add it to your browser bookmarks and just go from there.

[Thirdspace]

It's not possible to conceal your email address from the general public one way or the other your email address would be required when registering for something online so you can't possibly know which is meant for scam purposes..

you can use a different alias for a different registration/purpose and delete it when you're done
yahoo has this feature and it conceals your real email address, not sure about other email providers
so you will not be getting spams (auto-bounce) if they send messages to your deleted alias address
and you can easily figure out the leakage point if some unwanted messages coming into your inbox (while alias still active)
by looking at the receiving (alias) email address of those messages

[bananaunana]

Therefore, I always check a link in the left bottom corner before I click it and if the source ist suspicious I never click any link.

On Bitcointalk I also click only links from Newbie members before checking it in the left bottom corner before. To be sure you don't get on a malware site.

[nngella]

aside from hacking,
some newbies cannot differentiate public addresses and private keys.
They usually give their private key instead of public address which leads to the loss of tokens.

[Sujoris]

wow that's some next level social engineering and hacking.

[Alluro]

Nice catch bro. There are too many types of scams. They use social engineering skills to catch someone from phishing. The one and only thing is please make sure the Myetherwallet website is real one not. If you can add Metamask to your browser, it's safer than directly using Myetherwallet.

[Peacemaker1994]

Been careful about the site or link you click is certainly not enough to protect yourself from hackers this guy's would keep bumping you with phishing site. It's best you double protect your device with 2fa authenticator

[cline1903]

This is why we must be carefull to access our wallet in MyEtherWallet. Always bookmark that real site. don't adding MyEtherWallet CX extension in chrome because that is phising and scam. If you join a bounty project and recieved email with that email  on behalf of that bounty project, you can ask it on bounty manager or admin in your bounty project. Add Anti Virus in your device to secure it from malware or anything dangerous to steal your wallet