On December 30, 2020, the Guarda multicurrency non-custodial wallet underwent a DNS spoofing attack. The project team blames GoDaddy hosting for the incident.
According to Guarda representatives, GoDaddy employees transferred control over the account and domains [guarda.co and guarda.com] to attackers, which allowed the latter to redirect users to a fake wallet backup download page.
Guarda asked GoDaddy to suspend domains until access was restored, but this never happened. The project’s engineers tried to slow down the phishing site. According to them, 90% of the time during which domains were under the control of attackers, the phishing form was unavailable.
Guarda cooperates with the Estonian police. The project is considering filing a class action lawsuit against GoDaddy. And is citing a November 21 investigation by cybersecurity specialist Brian Krebs. It says that GoDaddy employees have been the victims of several phishing attacks. Attackers tricked their admin credentials to access other sites.
About 100 people have filed support tickets, according to a January 4 Guarda post. The attackers transferred the stolen assets to Ethereum and exchanged them for Bitcoin through the Uniswap decentralized exchange. Some funds, the project team assures, managed to be fixed at centralized sites.
ForkLog was able to detect some addresses to which the cybercriminals transferred funds.
bitcoin (11.12 BTC);Ethereum (over 200 ETH);USDT ERC-20 (over 200 ETH)
The service has already presented a compensation plan:
- if the user has lost up to $ 2000, he will be returned the full amount in bitcoin or stolen cryptocurrency. An alternative option is to agree to the payment of $ 4000 in Guarda tokens with an agreement to a three-year vesting;
- if the user has lost from $ 2,000 to $ 10,000, he will be returned 50% in bitcoin or they will be offered a double amount in tokens with an agreement to a three-year vesting;
- if the user has lost more than $ 10,000, he will be returned 20% in bitcoin, or they will be offered the equivalent of the lost amount + 50% in tokens with an agreement to a three-year vesting.
Tokens will be released until March 2021. The ransom will be carried out from a special fund.
Henceforth, WE WISH TO ANNOUNCE THAT OUR SERVICES ARE NOT AVAILABLE TO PEOPLE FROM NIGERIA AND INDIA. THESE ARE USELESS TIME WASTERS AND THIEVES TRYING TO BEG OR SCAM US OF OUR PRODUCTS. OUR SERVICES ARE NOT FREE AND PAYMENT IS UPFRONT
A LOT OF FOOLS FROM NIGERIA AND INDIA. on the off chance that YOU DON’T TRUST TO USE OUR SERVICES, DON’T CONTACT US AS WE HAVE NO FREE SERVICE
WE DO NOT RESPOND TO TIME WASTERS, COME READY TO BUY. KINDLY CONTACT US VIA THE LINKS BELOW:
ICQ: @MTH2021 Click HERE
TELEGRAM: @MTH2021 Click HERE