EtherDelta Hackers Indicted by U.S. Authorities
U.S. authorities have indicted two hackers, Elliot Gunton, and Anthony Tyler Nashatka, for hacking EtherDelta. The duo used a DNS attack on EtherDelta, a cryptocurrency exchange built on Ethereum blockchain in Dec 2017.
The two hacked the EtherDelta systems using the employee phone number and email address purchased from the black market. Court documents obtained by ZDNet refer the employee was Z.C. which experts believe to be EtherDelta’s CEO Zachary Coburn.
The hackers were able to convince the ZC’s mobile operator to attach call forwarding to a Google Voice number operated by the two hackers. This allowed hackers to access two-factor authentication messages for the EtherDelta account.
The duo then changed EtherDelta’s DNS records associated with the EtherDelta domain to the fake website which resembled like EtherDelta. At this point, visitors were redirected to the clone website and their credentials like private-key secretly recorded. Using this information hackers were able to then access thousands of users wallets and withdraw their funds.
The hackers were able to steal 308 ETH worth $266,789 at the time of hack as well as other cryptocurrency tokens. According to the indictment, hackers stole at least $800,000 worth of cryptocurrencies from one EtherDelta user.