Hackers robbed Guarda wallet users, setting control over the domain

December 30, 2020, the Guarda Neckododial Necastodial Wallet was attacked with the substitution of DNS records. The project team accuses the HODADDY hosting incident.

The Official Statement Regarding The Security OnCember 30, 2020, https: // T.Co/WGFJ6YED0Z

– Guarda (@guardawallet) January 2, 2021

According to representatives of Guarda, GODADDY employees transferred control over the account and domains [Guarda.Co and Guarda.com] to the attackers, which allowed the latter to redirect users to the fake page of loading a backup wallet.

Guarda asked Godaddy to suspend the work of domains until the access to access, but this did not happen. Project engineers tried to slow down the work of a fig site. According to them, 90% of the time during which the domains were controlled by attackers, the phishing form was not available.

Guarda collaborate with the Estonian police. The project considers the possibility of filing a collective lawsuit against Godaddy and refers to an investigation by the Brian Crebs Cybersecurity Specialist of November 21. It says that Godaddy employees became victims of several phishing attacks – attackers lured their admin data for access to other sites.

Exclusive: Fraudsters changed the email and DNS records for a number of cryptocurrency trading platforms this week, after successfully social engineering employees at GoDaddy, the world’s largest domain name registrar. https: // t.Co/Lycdowb71q Pic.Twitter.COM/VLBSPSXPWI

– Briankrebs (@briankrebs) NOVEMBER 21, 2020

About 100 people submitted ticks to the support service, according to the publication of Guarda on January 4. Some of them are unhappy that they did not receive a notification of the attack by e -mail, which, in their opinion, would minimize the damage.

Attackers transferred stolen assets to Ethereum and exchanged for bitcoin through a decentralized Uniswap exchange rate. Some funds assure the project team, it was possible to fix it on centralized sites.

FORKLOG managed to find some addresses to which attackers transferred funds.

(over 26 BTC); (over 200 eth); (over 200 eth).

The service has already submitted a plan for damages:

• If the user has lost until $ 2000, he will be returned the full amount in bitcoin or stolen cryptocurrency. An alternative option implies consent to the payment of $ 4000 in Guarda tokens with consent to three -year -old Vesting;
• If the user has lost from $ 2000 to $ 10,000, he will be returned 50% in Bitcoin or they will offer a double amount in tokens with consent to three -year vesting;
• If the user has lost more than $ 10,000, he will be returned 20% in Bitcoin or they will offer the equivalent of a lost amount +50% in tokens with consent to three -year -old entrance.

Tokens will be released until March 2021. The ransom will be carried out from a special fund.

We will remind, earlier we talked about the main hacks of 2020 in the cryptocurrency industry.

Subscribe to FORKLOG news in Telegram: Forklog Feed – the whole news feed, FORKLOG – the most important news and polls.