From despair to gratefulness - how to loose and get back 10.000 $ hacked in crypto

By VNFC | crypto sessions | 27 Jul 2020


hello everyone

this is my second article related to hackers and the bad guys from crypto, but this time is with happy ending:

few days ago, Harry from mycrypto.com succeeded to refund the 10.000 $ stolen from a Binance user by some ciber criminals.

c798aa2271697dfd6b0045a1a4989565f689b0ca9f388bc8cd10bcb85ed89e9b.jpeg

They used a fake Uniswap user interface and prompt the user to connect their Metamask wallet to it, then showed an error message and request for secret keys.

but let's see how Harry himself describe the process:

The bad actor(s) would deploy a malicious dapp interface (in this case it was a fake Uniswap UI) and prompt the user to connect their MetaMask account. The kit would then mimic the MetaMask popup and throw an error state to then prompt the user to enter their secret. Once the user did, it would send the user’s input to their database via a REST API and direct the user to the legitimate app.

You can see the process in this short clip:

After identifying the bad actors and the victims, Harry found another fake domains used for fooling people:

node.uniswapv1v2.app (162.213.255.91)
uniswapv1v2.app (162.213.255.91)
uniswapexchange.online (162.213.255.91)
uniswop.shop (68.65.123.97)
xmr-wallet.com (162.213.255.91)

The next move was to contact Binance and request for the victim's email in the process of returning the funds. Within an hour, they established the connection and after some verifications, the money was refunded.

 

For being protected, please read mycrypto.com instructions for staying safe, far from bad eyes.

Also, If you run a website, web extension, or something elsedo not allow users to enter raw private keys, mnemonic phrases, or keystore files into your product. It is harmful to allow it and users need to learn from the very beginning of their journey that it’s not a safe method of accessing their funds.

This is a happy ending episode between hackers and their victims, but remember there are more cases with reversal situations. Please be careful and look twice where you want to send your money.

 

How do you rate this article?


6

1

VNFC
VNFC

we wait and we shall see what the world is bringing to us tomorrow


crypto sessions
crypto sessions

what we can find useful here, presented in a short way

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.