How to protect your wallets from hacking: six non-obvious ways

Date:

2018-08-02 23:15:12

Views:

3634

Rating:

1Like 0Dislike

Share:

How to protect your wallets from hacking: six non-obvious ways Source:

A study by the American company Foley & Lardner showed that 71 percent of large traders and captainvalor considers hacking attacks and fraud are the most serious factor that has a negative impact on the market. Respondents noted that the threat of cyber attacks to the global cryptocurrency industry are very high.

According to the report, ING Bank NV and Ipsos, nine per cent of Europeans plan to buy coins in the near future, and in USA 8 percent of the population already own digital assets. In the future, according to RT, the number of capturadora will increase to 250 million people — a quarter of a billion potential victims of scams. And they all need to face the new tricks that scammers invent every day. Talk about non-obvious ways to protect your money from hackers.

the

App in Google Play and App Store

Tips:

    the
  1. don't get carried away with the installation of mobile applications that produce unverified publishers and which do not solve the immediate problems;
  2. the
  3. add two-factor authentication for your most important apps on the smartphone;
  4. the
  5. be sure to check the links to the applications on the official website of the project.

Victims of burglary are often the owners of smartphones with Android operating system that does not use two-factor authentication. The fact that the open Google Android operating system makes users ' data more open and vulnerable. When the application starts, the user enters sensitive data to access their accounts on social networks or email services, and thereby provides hackers access to them.

One of the most famous stories associated with the hacking system the Android attack on the traders of the American stock exchange Poloniex. Last year in Google Play, a host of trading apps platform, although the exchange has not released official Android version. According to analysts ESET, then victims of fraud were more than 5.5 thousands of traders.

Users of iOS devices, in turn, often accidentally downloaded from the App Store, with built-in hidden miners. Apple was even forced to tighten the rules of receiving applications to your store to stop the spread of such software. But it's a completely different situation, the damage from which is not comparable to hacking wallets, since the miner only slows down your computer or smartphone.

the

Bots in the Slack

Tips:

    the
  1. ignore the bots;
  2. the
  3. protect Slack channel, for example, by using bots Metacert security or Webroot for antivirus software Avira or even the built-in Google Safe Browsing.

From mid-2017 Slack-bots, created by criminals, ostensibly to trade in cryptocurrencies, became the main trouble for the fast-growing corporate messaging service. Most often, the hackers create a bot that notifies users about problems with their wallet. The idea is to get people to click on the link and enter the private key. And it works — despite the fact that members of the crypto community to react quickly and block bots at roughly the same speed with which scammers create them.

The successful attack using Slack at the moment — hacking group, which discussed the development of the Enigma coins. Then the scammers have earned 500 thousand dollars in Ethereum on gullible users.

the

add-Ons for cryptographic trade

Tips:

    the
  1. use for operations with cryptocurrencies separate browser;
  2. the
  3. enable incognito mode;
  4. the
  5. do not load extensions and applications for coins
  6. the
  7. get a separate smartphone or computer only for operation with coins;
  8. the
  9. download the antivirus and install a firewall.

Many Browsers offer extensions for UI customization, password storage and more comfortable work with online wallets. Discard of these tools — and it's not that the script reads everything that you write in the input line. The problem is that such proposals are based on JavaScript, which is extremely vulnerable to attacks. In addition, the extension can use the computer for covert mining.

the

Authentication via SMS

Tips:

    the
  1. make the redirect to block attackers access to your data;
  2. the
  3. make two-factor authentication via SMS to receive text passwords to confirm transactions and sign in to your account.

Many users prefer to use mobile authentication (using push notifications), because they used to do it, and the phone is always at hand. The company Positive Technologies, specializing in cyber security, demonstrated how easy it is to intercept a message confirming the password via the push-Protocol Signal System 7 (SS7).

Experts were able to access the text message using a tool that detects weaknesses in the cellular network. The demonstration was conducted on the example of Coinbase, and the results shocked users of the exchange. At first glance, it looks like the vulnerability of the trading platform, but the real reason lies in the cellular system, said Positive Technologies. This proves that any system can be accessed directly via SMS, even if you use two-factor authentication.

the

Public wifi

Tips:

    the
  1. to perform cryptobia transactions through public Wi-Fi, even if you use VPN;
  2. the
  3. periodically update the firmware of your ownrouter equipment manufacturers are constantly releasing updates to protect users against selection of keys to routers.

Back in October of last year in Wi-Fi Protected Access (WPA), which is used by routers, was discovered a fatal vulnerability. After performing a basic attack KRACK (attacks by resetting the password) the user's device is again connected to the same network, but it was at that time already controlled by the hackers. So all information uploaded or sent through the network by the user, becomes available to the attackers, including the secret keys from crypto coleslaw. This problem is particularly acute for public Wi-Fi networks at railway stations, airports, hotels, and places with a large crowd of people.

the

Sites-clones and phishing

Tips:

    the
  1. never use the websites of the stock exchanges and cryptocurrency applications that do not use the HTPPS Protocol;
  2. the
  3. when using Chrome, configure the extension — for example, Cryptonite. It shows that the website address has been spoofed, and you are caught in the hands of fraudsters;
  4. the
  5. if you have received a push notification from any website that is associated with the cryptocurrency, copy the link into the address bar of the browser and compare it with the address of the source site;
  6. the
  7. if something seems suspicious, close the window and delete the email from your mailbox.

This method of hacking like phishing, a well-known and widely used since the "dotcom revolution". Fraudsters create a full copy of the source site with a domain that differs by one letter. The purpose of this trick — including the replacement of the address in the browser address bar the goal is to entice the user to a malicious website and force it to enter the password of the account on the exchange or crypto.

Another way phishing — sending emails on behalf of the exchange or of another company, which fully coincides with the original letter of the marketplace. In fact, the purpose of these messages is to get you to click the link and enter your personal data. According to estimates Chainalysis, scammers use this method already stolen cryptocurrency in the amount of $ 225 million.

With such recently faced we are. On the ingenious scheme of fraud and fake website, read the Ethereum Project .

A Renowned expert on malicious software Mac Patrick Wardle often writes in his blog that many viruses aimed at cheating the ordinary user, infinitely stupid. Equally stupid to become a victim of such attacks. By following the above tips, you can protect your money from hackers. And, of course, it is worth remembering that store is worth the money on cold wallets, not on exchanges or in the online services.

Recommended

CRYPTOMACH / Maximum exchange rate of Bitcoin in the future, the output of the crypts on the map, Ycash and the Board of Finance

CRYPTOMACH / Maximum exchange rate of Bitcoin in the future, the output of the crypts on the map, Ycash and the Board of Finance

the long-awaited summer. Niche cryptocurrency supported the event and gave unusually hot week. During the last seven days, we learned about the new line of graphics cards from AMD, the mining in TON and hard forks . In addition dealt with the profita...

Co-owner Bitcoin.org Coinbase Pro ridiculed and called a stock exchange Scam

Co-owner Bitcoin.org Coinbase Pro ridiculed and called a stock exchange Scam

co-Owner Bitcoin.org and most popular forum about cryptocurrency Bitcointalk.org Cobra called Coinbase Scam Pro trading platform American crypto currency exchange Coinbase. In his tweet he wrote «if you read Coinbase Pro backwards, get the word ...

The Ethereum is a cryptocurrency Scam. A new report Chainalysis

The Ethereum is a cryptocurrency Scam. A new report Chainalysis

When people learned how to create a new cryptocurrency and began to build their infrastructure like marketplaces, in the field began to appear and fraud. According to blockchain auditor Chainalysis for the past two years, fraud in the ecosystem has s...

Comments (0)

This article has no comment, be the first!

Add comment

Related News

VEB and the Grozny mayor's office transferred the housing sector on the blockchain

VEB and the Grozny mayor's office transferred the housing sector on the blockchain

In February, the first Deputy Chairman of VTB Olga Dergunova positively the prospects of the blockchain. According to her, the technology will improve the speed of transactions and security standards. To move from words to action ...

Hacker 1337. How to hack Etherscan not to cause any harm

Hacker 1337. How to hack Etherscan not to cause any harm

Monday on the website Etherscan.io appeared a pop-up message with the numbers 1337. The visitors began to panic and spread rumors about hacking Explorer. really hacked, but the damage from a hacker attack was zero. About it writes...

Analyst at PwC in the future will survive only real digital currency. Such as Bitcoin

Analyst at PwC in the future will survive only real digital currency. Such as Bitcoin

early In the week, one of the most famous investors on wall street, 67-year-old bill Miller that Bitcoin is the most promising coin and altcoins are of no use. According to him, in the future will survive only the first cryptocurr...

Thailand will use the blockchain for the sake of prosperity and a brighter future. What's the plan?

Thailand will use the blockchain for the sake of prosperity and a brighter future. What's the plan?

According to the report , the Association of Thai bond market intends to reduce the time for issue of certificates for bonds at least twice. The main objective is to support the secondary market. To help can the blockchain. the In...

The South Korean company

The South Korean company "found" the Russian cruiser gold. She was accused of fraud

In July, the South Korean company Shinil Group announced that it had found the Russian cruiser "Dmitry Donskoy", which sank during the Russo-Japanese war. On Board the ship is supposed to be a gold 133 billion dollars — it is twic...

Russian miner owed 48 thousand rubles for electricity. Nothing will

Russian miner owed 48 thousand rubles for electricity. Nothing will

news Agency reports: «the owner of cryptotermes in Cherepovets owed energy of 48 thousand rubles». Information from «news Agency» not much, but its enough for our wildest speculation. We know that the need for ...

Paul Krugman: the cryptocurrency will throw the financial system for 300 years ago

Paul Krugman: the cryptocurrency will throw the financial system for 300 years ago

again criticize winners of the Nobel prize. One of the most famous economists of our time, Paul Krugman gave an interview to The New York Times, which stated that the main bitcoin will never replace money. About it writes . the W...

Buys startup Binance Trust Wallet. What does it mean?

Buys startup Binance Trust Wallet. What does it mean?

the Binance announced the successful purchase of a startup California Trust Wallet. Previously the platform team has worked to develop secure crypto and decentralized browser applications. About it writes . the New successes Binan...

And you, Brutus: most kryptomere hopes to regulate cryptocurrency

And you, Brutus: most kryptomere hopes to regulate cryptocurrency

According to the survey of the Lithuanian payment company Mistertango, 88 percent of all kryptomere want regulation of the industry. The study is based on a survey of 24 exchange, whose daily trading volume exceeds $ 100 million. ...

When in Russia you can buy a car for the crypt? Expert's answer

When in Russia you can buy a car for the crypt? Expert's answer

For the cryptocurrency is to buy a house, a submarine, Lamba, education and tickets to space. But while it is rather individual companies and private sellers than a full-fledged trend. Soon the situation may change — one of Russia...

As the blockchain can solve the terrible problem of Facebook and other social networks

As the blockchain can solve the terrible problem of Facebook and other social networks

Today are actively discussing the problem of false information in Facebook, Google and other sources. Rumor has it that by publishing a fake news someone even influenced the outcome of U.S. presidential elections. Not for us to ju...

As a student from Boston stole $ 5 million in the crypt thanks to the SIM card

As a student from Boston stole $ 5 million in the crypt thanks to the SIM card

the Publication has managed to obtain access to court records about the 20-year-old accused Joel Ortiz. Student from Boston suspected of stealing $ 5 million in the cryptocurrency by fraud with SIM cards. How can you steal bitcoin...

Bitmain Antminer presented S9j — ASIC Bitcoin. The profitability of mining and the characteristics of

Bitmain Antminer presented S9j — ASIC Bitcoin. The profitability of mining and the characteristics of

Yesterday T2-Turbo. ASIC miner is for SHA-256 and brings 3.6 dollars in BTC per day. While inside the device there are Samsung components that affect energy consumption. The response from Bitmain was immediate — the company showed...

The memorable July for mining-pool 2Miners. The invasion of the ASIC, reducing the rate of Uncle-blocks, and regular forks

The memorable July for mining-pool 2Miners. The invasion of the ASIC, reducing the rate of Uncle-blocks, and regular forks

once again, summing the intermediate result of the work on the pool . July marks the beginning of the support ASIC miners for algorithms Equihash and Ethash. We also increased the efficiency of Ethash pools and are working on a ne...

Fake record growth in the number of transactions on the network EOS turned out to be spam

Fake record growth in the number of transactions on the network EOS turned out to be spam

Recently, EOS was ahead of his main rival in the number of transactions in the network. Do not hurry to rejoice — a short-term victory EOS was the usual spam attack. About it writes . the the speed of the blockchain Sunday EOS byp...

Bitcoin + PoS + anonymous transactions + Tor = the Spectre and his mission to the moon

Bitcoin + PoS + anonymous transactions + Tor = the Spectre and his mission to the moon

Cryptocurrency projects so much that it's hard to follow. Offer soon to follow Spectre (not to be confused with SPECTRE). The authors released two token in 2016: spectre and xspec. They have not received special attention two year...

Charlie Lee became an adviser to HTC Exodus. The smartphone will support Litecoin

Charlie Lee became an adviser to HTC Exodus. The smartphone will support Litecoin

In mid-July, the publisher of blakan games CryptoKitties, the company AxiomZen with HTC about the inclusion of the game in the package preinstalled applications for blockchain-smartphone Exodus. Now Creator Charlie Lee became an a...

New cryptocurrency exchange from Liechtenstein meets the requirements of the EU. And she plays the Apple Watch

New cryptocurrency exchange from Liechtenstein meets the requirements of the EU. And she plays the Apple Watch

a New cryptocurrency exchange, which is registered in Liechtenstein, meet all the latest recommendations of the European organization for securities and markets. A new system of that body, introduced in January of this year. It of...

Found the Grail: profit of the Swiss Bank increased due to cryptocurrency

Found the Grail: profit of the Swiss Bank increased due to cryptocurrency

Tools Swissquote Bank has increased its profit by 44 percent in the first half of 2018. The secret of company's success is simple — she started to offer services for the creation of accounts for capturadora. About it writes . the ...

Valve has removed the game from Steam Abstractism after allegations of hidden mining Monero

Valve has removed the game from Steam Abstractism after allegations of hidden mining Monero

last week members of the community Ethereum concern about the activities of the most popular dApp called Fomo3D. In a decentralized application has already invested 180 thousand esters, and further investment could jeopardize the ...