Hackers took possession of access to the sites of the Waves blockchain-platform and the decentralized exchange Waves DEX.
Currently, domain control is returned to developers.
https://t.co/Yt4joBEtVZ website is back online. We had an unpleasant accident with DNS hijacking, fortunately it was resolved fairly quickly. No financial damage to user wallets occurred. Another reminder that current cenralized DNS system needs a major overhaul.
— sasha ivanov (@sasha35625) July 24, 2018
Phishing attack occurred on July 24th. According to Ivanov, the hackers forged his passport, which was provided for the support of the domain company to change the password. However, due to the fact that the exchange does not store customer funds, it was not possible to withdraw assets from intruders.
“To protect against such attacks, all representatives of the crypto-industry should work on a decentralized system of domain names, ” said Alexander Ivanov.
In turn, some experts criticized the practice of Waves, according to which customers must enter seed-phrases in order to use the wallet of the platform.
After an independent audit of the company Kudelski Security in 2017, the developers of Waves have corrected critical moments concerning the storage of passwords from user wallets.