Classic Ether Wallet Falls Victim to a Social Engineering Hacker
Popular Ethereum Classic (ETC) wallet Classic Ether Wallet has recently been compromised by a social engineering attack . The users have been advised, at least for now, not to use the service.
The wallet was hijacked by a hacker who called the wallet’s web host, German company 1and1. The hacker managed to convince them that he was the website’s owner, therefore being granted access. How the hacker convinced 1and1’s customer support, and what information he used to do so, is still unknown.
Once he was granted access to the domain registration of the website, the hacker changed the settings and then pointed the domain to another server that the hacker owns. Now, if the wallet is used to make a transaction, the tokens are not sent to the recipient, and will instead be stolen by the hacker .