According to security research firm RiskIQ[1], a criminal group planned a phishing attack using a malware called MEWKit.
A Phishing Attack Program Called MEWKit
This new type of phishing crime is called MEWKit. This kind of program will steal money from the victim’s wallet through a front-end program that mimics the MyEtherWallet.
According to security researchers, criminals using MEWKit will also use fake web pages to obtain the details of their users’ personal information and use this information to make automatic transfers. According to reports, once the victims decrypt their wallets, the criminals immediately steal money from the victim’s wallet. In fact, the ability of criminals to steal the victim’s wallet key means that if the attack is not recognized by others, these criminals can continue to steal funds.
What is now certain is that this fraudulent program uses a script that can automatically initiate a transfer of funds so that criminals can complete the transfer with the click of a button like a legitimate user. This fraud program also conceals traces of criminal activity. On the other hand, the MEWkit back-end program allows hackers to keep track of stolen Ethernet coins while tracking private user key information.
MyEtherWallet is the Most Affected
MyEtherWallet seems to be the most affected purse platform in this malicious phishing attack. The reason for this result is that Ethereum Wallet is very easy to use and lacks security features – such as the ability to detect the presence of suspicious scripts in active Web sessions. Formal banks will provide additional security measures, but Ethereum wallets are somewhat different from banks. This wallet program provides users with direct access to the Ethernet network. MEWKit uses this weakness to steal various login credentials.
