DASH had reported to find some serious vulnerabilities in their MyDashWallet and has asked to not to use it anymore:

MyDashWallet.org is a widely used independent wallet for DASH developed and maintained by Delta Engine with no relation to the official wallets maintained by the Dash Core Group.

All MyDashWallet users are recommended to move all their funds to a new HD wallet. You can visit MyDashWallet website to create a HD wallet or go to https://www.dash.org/downloads/ for all supported wallets. VegaWallet also rolled out its Version 3.0 for Android immediately after this hack was discovered.:

MyDashWallet website was using an external script from script hosting website GreasyFork. This reference was to load the latest version of the script instead of some specific version. This is a very insecure practice. A hacker was successful to hack the GreasyFork account of theauthor of this script and modified it to transfer users' private keys to an external server.

Sounds so simple! How naive is to ignore such blunders for a wallet website!

Shouldn't all crypto wallets be regulated too? Before trusting users' funds, all such wallet apps should be subject to some rigorous third party security audits by some reputed auditors.

How do you put your trust in a wallet?

For online wallets, I only trust MyEtherWallet so far.

• What other online wallets do you guys trust in?
• How do you evaluate the security offered by an online wallet?