Breaking: EtherDelta May Have Been Compromised

Wednesday, 20/12/2017 | 21:42 GMT by Aziz Abdel-Qader
  • It issued a security alert warning to users about a security incident involving ‎its DNS server.
Breaking: EtherDelta May Have Been Compromised
FM Studio

The team behind the crypto decentralized exchange EtherDelta, which is powered by a smart contract on the ‎Ethereum Blockchain , has just issued a security alert warning all users about a security incident involving its DNS server.

EtherDelta, which allows users to trade ERC-20 tokens, said on Twitter that it is currently investigating this issue, and in the meantime advised its users not to use the current site.

Discover credible partners and premium clients in China's leading event!

Although it is unclear exactly how much money was stolen, it appears several thousands of dollars worth of cryptocurrency is now in the hands of an unknown assailant. However, EtherDelta's warning implies that users will be safe so long as they don't use the site right now, thus any tokens/ether deposited to EtherDelta should be safe whichever wallets they are currently in.

EtherDelta’s web interface allows users to deposit and ‎withdraw assets, and make transactions directly through ‎Hosting their Ethereum private key in-browser. ‎

It seems that someone successfully injected malicious code into the exchange. According to an ongoing investigation, the imposter app has no CHAT button on the navigation bar nor the official Twitter feed on the bottom right. It is also populated with a fake order book.

Earlier in September, scammers created a phishing website with a similar domain name which was linked to a malicious JavaScript code that gave attackers full control of data on EtherDelta user’s session. At the time, the assailant distributed a link to an unlisted EtherDelta token and made it appear more legitimate through unknown access to the official EtherDelta chat room.

The team behind the crypto decentralized exchange EtherDelta, which is powered by a smart contract on the ‎Ethereum Blockchain , has just issued a security alert warning all users about a security incident involving its DNS server.

EtherDelta, which allows users to trade ERC-20 tokens, said on Twitter that it is currently investigating this issue, and in the meantime advised its users not to use the current site.

Discover credible partners and premium clients in China's leading event!

Although it is unclear exactly how much money was stolen, it appears several thousands of dollars worth of cryptocurrency is now in the hands of an unknown assailant. However, EtherDelta's warning implies that users will be safe so long as they don't use the site right now, thus any tokens/ether deposited to EtherDelta should be safe whichever wallets they are currently in.

EtherDelta’s web interface allows users to deposit and ‎withdraw assets, and make transactions directly through ‎Hosting their Ethereum private key in-browser. ‎

It seems that someone successfully injected malicious code into the exchange. According to an ongoing investigation, the imposter app has no CHAT button on the navigation bar nor the official Twitter feed on the bottom right. It is also populated with a fake order book.

Earlier in September, scammers created a phishing website with a similar domain name which was linked to a malicious JavaScript code that gave attackers full control of data on EtherDelta user’s session. At the time, the assailant distributed a link to an unlisted EtherDelta token and made it appear more legitimate through unknown access to the official EtherDelta chat room.

About the Author: Aziz Abdel-Qader
Aziz Abdel-Qader
  • 4984 Articles
  • 31 Followers
About the Author: Aziz Abdel-Qader
  • 4984 Articles
  • 31 Followers

More from the Author

CryptoCurrency

!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|} !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}