Attempted Hack on Ethereum’s EtherScan Detected

Attempted Hack on Ethereum’s EtherScan Detected

News
July 24, 2018 by Sandra Onyeiwu
1369
Etherscan, Ethereum block explorer announced via their official subreddit on Monday to alert the community about an apparent hacking attempt that had just been detected and thwarted. The attacker attempted to use the comment section to serve up malicious code. By injecting random JavaScript alerts into the summarized comments section provided by Disqus, a third-party
Bitzamp


Etherscan, Ethereum block explorer announced via their official subreddit on Monday to alert the community about an apparent hacking attempt that had just been detected and thwarted.

The attacker attempted to use the comment section to serve up malicious code. By injecting random JavaScript alerts into the summarized comments section provided by Disqus, a third-party comment hosting service.

It was discovered when the admins started receiving reports of error messages popping up on the site with the content “1337” in them. It was quickly discovered that comments had been posted with code inside them.


Etherscan said they have patched the problem, no systems were compromised besides the appearance of pop-up alerts. According to Etherscan, they disabled the Disqus comments section and tested a patch to encode footer comments to prevent future attacks.

Upon further investigation, Etherscan discovered there were three attempts to inject the “1337” alert. The organization said the first attempt seemed non-malicious in nature, whereas the following two attempts originated from a party associated with Etherscan.

Thankfully, this particular scheme does not seem to have had led to any loss of funds, though other recent incidents have not been resolved quite so cleanly.

 

Get Bitzamp Latest Update By Downloading our Mobile App: Bitzamp – Cryptocurrency News – Apps on Google Play


Join Us On Telegram | Twitter | Facebook


Add a Comment