Introducing the multi coin lightweight NEXT wallet
Hi, a few days ago my friend received 0.05ETH from a strange address. We tracked the transaction and saw that address was sending 0.05ETH to many wallets.
0x7C81DB105681383Ab00454F06428432646B17eEA <= this is the wallet that sent ETH.
And today my friend said that all his tokens were stolen. He used Metamask to import his wallet. And I see that all the address that received 0.05ETH were all stolen. Only the tokens that already had price on Coinmarketcap were stolen.
We literally didn’t know how the hacker(s) could do it. Just warning.
Edit: imo, the hackers are already had the private key of those wallets. And they sent the ETH to transfer those tokens. My friend uses Macbook 2015 and he just bought it. I’m asking him about his usage of programs. Will update later.
Oh god sorry guys I’ve been in a trip right after the day I posted this. We gave up on finding the reason. The most believable theory is HOLA VPN.
Hola is not a server-based VPN, it’s peer-to-peer, that means a hacker can placed a net to catch all the data that went through.
In April, MyEtherWallet posted a warning about Hola. That makes us have more belief that Hola is the reason.
1. Before he use Metamask, he used to use MyEtherWallet website. And he used Hola VPN from a very long time (with his old Windows laptop – fresh and 100% no malware). The Macbook is not related, sorry for this part, he just bought it but he didn’t use it for making any transactions.
2. I believed that MEW is not hacked, but some parts when we connect to MEW is being exploited.
3. He’s an crypto community manager for more than 1 year so I believe that he had basic knowledge about how to avoid being scam (like fake websites…).
4. A stranger sent me this link: [Hacker Breaches Hola VPN](https://www.bleepingcomputer.com/news/security/hacker-breaches-hola-vpn-chrome-extension-to-go-after-cryptocurrency-wallet-site/)
5. Not everyone who was hacked used Hola, but that’s the most similarity we could found until now.
Please be careful everyone, wish you all the luck.
I didn’t think this could happen but I only use BTC. I posted a few min ago reaching out for help because a customer of mine sent me funds that took a long while to get. This is her first ever transfer using crypto so she’s brand spanking new. She sent me her screenshot of the transfer complete on her end and turns out she purchased BCH instead of BTC and sent to to the address I provided. I always use a legacy address, no real reasoning behind why I chose to send my legacy wallet info except for the other wallet addresses aren’t always compatible, the sender will say it won’t send or no such address so I’ve been receiving with a legacy address. I’m not a seasoned crypto guy by any means, I’m still learning myself, I’m not quite sure of the difference between a legacy route and default or compatible route. With that said, I was able to spend a little time on google and retrieve the transaction myself so if I can do it, anyone can!
Customer: used coinbase to buy and send bitcoin cash
Me: provided my legacy address from Coinami
Here’s the link of the steps I took provided by coinami, it was super super easy. I did it all from my phone, no computer/laptop. Took all of 5 min, took more time to write down and type in my recovery phrase than getting the bitcoin cash into my BCH wallet. I went ahead and created anBCH wallet as soon as I noticed she sent cash and not coins.
Good luck and I hope I was able to help someone out! Coinbase told her she was basically SOL so they aren’t any help.