MyEtherWallet

MyEtherWallet (MEW) is a free, open-source, client-side interface for the Ethereum blockchain, founded in 2015 and headquartered in Los Angeles, California. It allows users to create and manage Ethereum wallets, interact with smart contracts, and access decentralised applications without registering an account or providing personal information. MEW operates as a non-custodial platform — private keys are generated and stored entirely on the user's device and are never transmitted to MyEtherWallet's servers.

Security

• Non-custodial: MEW never stores private keys, seed phrases, or user data. The user is solely responsible for securing credentials — MEW cannot recover lost keys or freeze accounts.
• Client-side key generation: All cryptographic operations occur locally in the browser or mobile app. The application can be downloaded and run offline for additional isolation.
• Hardware wallet support: MEW integrates with Ledger and Trezor hardware wallets, enabling offline transaction signing and keeping keys off the host device entirely.
• Open-source codebase: The full application source is publicly available on GitHub at github.com/MyEtherWallet, enabling independent security review.
• Bug bounty: MEW operates an active programme through HackerOne to incentivise responsible disclosure of security issues.
• Enkrypt browser extension: MEW's Enkrypt extension provides a dedicated browser wallet as an alternative to the web interface, reducing exposure to DNS-based attacks.

Regulation

MyEtherWallet does not custody user funds and does not exchange assets on behalf of users. As a non-custodial software interface, it is not required to register as a money-services business with FinCEN in the United States. MEW requires no account registration, no email address, and no identity verification.

Incident History

• April 24, 2018 — BGP/DNS route hijack: Attackers exploited a Border Gateway Protocol vulnerability in Amazon Route 53 DNS infrastructure. For approximately two hours, visitors to myetherwallet.com were redirected to a phishing server. Users who dismissed an invalid SSL certificate warning had their credentials captured. Approximately 215 ETH (around $152,000 at the time) was drained. MyEtherWallet's own code and servers were not breached; the attack exploited public internet routing infrastructure. No major security breaches involving MEW's own systems have been publicly reported since.

Availability

MyEtherWallet is available globally with no geographic restrictions. It supports Ethereum and a range of EVM-compatible networks including Polygon, Arbitrum, Optimism, Base, and BNB Smart Chain. The MEW mobile app is available on iOS and Android.