Lisk Hub Security Update
At Lisk, we are proud of the fact that our product development has a strong focus on security. We work hard every single day to ensure that you can interact with our network in the most secure way.
Lisk is constantly expanding as more users want to hold our utility token and participate in our voting system. Since the beginning of our blockchain, we have witnessed the creation of over 190,000 wallets and supported over 1,500,000 transactions. As the ecosystem continues to grow, we need to ensure best security practices to support this development.
Recently, a BGP hijacking attack was performed against Amazon, causing them to route traffic originally intended for Google’s DNS servers to go to a rogue DNS server. This rogue DNS server then returned the IP of a phishing site for DNS lookups for MyEtherWallet.com.
Given our daily improvement of Lisk Hub, we have come to the conclusion that the web version cannot guarantee the additional levels of security that the desktop version of Lisk Hub offers. The desktop version is signed with the Lisk Stiftung certificate, therefore downloading Lisk Hub gives you a local copy that is:
- Verified with the digital signature that it is authentic.
- Loaded locally and therefore cannot be swapped out by a BGP/DNS hack.
In light of all of this, we have decided to cease hosting the online version of Lisk Hub and the online version of Lisk Nano: https://m.lisk.io. Instead, we ask our users to download and use the desktop version.
If you have any further questions or concerns, our developers will be available to answer them on Reddit and Lisk.chat.
-The Lisk Team
Is this one of the first posts that you're seeing about Lisk? See more at Lisk.io or Github.