Kevin Beaumont reports that, by compromising a router at Equinix in Chicago, attackers were able to forge DNS responses for myetherwallet.com, with users "redirected to a server hosted in Russia, which served the website using a fake certificate." Victims' online wallets were drained of cryptocurrency.
Also at The Verge and Ars Technica which said
Amazon lost control of a small number of its cloud services IP addresses for two hours on [April 24] when hackers exploited a known Internet-protocol weakness that let them to redirect traffic to rogue destinations. By subverting Amazon's domain-resolution service, the attackers masqueraded as cryptocurrency website MyEtherWallet.com and stole about $150,000 in digital coins from unwitting end users. They may have targeted other Amazon customers as well.
(Score: 0) by Anonymous Coward on Monday April 30 2018, @08:23AM
And, crappy Bradley?
Let me get this straight, "almost certainly", which is to say, "not certainly", and root CA compromised? Is there any other kind? So, yeah, stupid users, not scammer Ponzi scheme DeVoss level of evilness. Of Course.
Old song from the '30's:
"Once I built a blockchain, now it's borked, brother can you spare an Uber."