Hackers crack BlackWallet DNS server, steal US$ 400,000
Attackers have made off with up to US$400,000 (£290,000) in cryptocurrency after an ingenious attack on Stellar Lumen (XLM) wallet, BlackWallet.
In the latest cryptocurrency security incident, hackers managed to compromise the server hosting popular web-based wallet BlackWallet and change the DNS records to point to a replica BlackWallet site.
When XLM holders logged into the new site, a script ran that transferred their balances to the hacker’s wallet – if they held more than 20 XLM.
A poster on Reddit claiming to be the admin said: “BlackWallet was compromised today, after someone accessed my hosting provider account. I am sincerely sorry about this and hope that we will get the funds back. I am in talks with my hosting provider to get as much information about the hacker and will see what can be done with it. If you ever entered your key on blackwallet, you may want to move your funds to a new wallet using the stellar account viewer . Please note however that BlackWallet was only an account viewer and that no keys were stored on the server!”
Source | scmagazineuk