DeFi apps targeted in apparent Squarespace DNS registry attack: Blockaid
Multiple decentralized finance (DeFi) apps were targeted in a domain registry attack on July 11, according to an X post from blockchain security platform Blockaid. The attacker has taken control of the DNS registry for Compound Finance and has attempted — but failed — to take control of Celer Network’s registry.
After a preliminary investigation, Blockaid concluded that the attacker is targeting domain names provided by Squarespace, potentially putting any DeFi app with a Squarespace domain at risk.
Security researchers first became aware of the attack when the Compound interface at compound.finance began redirecting to a malicious website. The malicious site was equipped with a drainer app that attempted to steal users’ tokens.
Related: Compound Finance site potentially breached — ZachXBT
At 1:38 pm UTC, Celer network announced that it, too, had been attacked. However, in this case, Celer stated that its domain monitoring system had detected the takeover and intercepted it before it could succeed.
At 3:38 pm UTC, Blockaid announced that “multiple DeFi front ends are at risk of hijacking, with a few incidents already taking place[.]” “From initial assessment, it appears that the attackers are operating by hijacking DNS records of projects hosted on SquareSpace,” it stated.
0xngmi, a developer at the blockchain analytics platform DefiLlama, posted a list of domains that may be affected by the attack. The list includes more than 100 DeFi protocols, including Pendle Finance, dYdX, Polymarket, Satoshi Protocol, Nirvana, LooksRare and many others.
Web3 wallet MetaMask announced that it is attempting to warn users of possibly compromised apps associated with the attack. “For those of you using MetaMask, you’ll see a warning provided by @blockaid_ if you attempt to transact on any known site that’s involved in this current attack,” it stated.
Domain name hijacking has been one of several attacks against the Web3 industry over the past year. In December, an attacker injected malicious code into the Ledger Connect library that most Web3 apps use for wallet connections, affecting nearly the entire Ethereum Virtual Machine ecosystem.
Magazine: Crypto-Sec: Phishing scammer goes after Hedera users, address poisoner gets $70K
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Web3 ai Could Lead 2025’s Best Cryptos With 1,747% ROI, Outshining Toncoin & Chainlink’s Performance
Toncoin (TON) and Chainlink (LINK) show strong market positions, but Web3 ai’s AI-driven platform and sub-$0.001 price point may offer greater potential for exponential growth.Toncoin (TON): Leveraging Telegram’s Ecosystem for GrowthChainlink (LINK): Technical Indicators Point to Potential BreakoutWeb3 ai: Affordable Entry with AI-Driven Security ToolsClosing Thought
Ethereum Set to Soar Past $4,000 Again
Ethereum eyes a comeback above $4,000 with a projected 55% surge amid rising market optimism.What’s Driving the Ethereum Rally?Could Ethereum Break Past Its All-Time High?
Lark Davis: Best Time to Make Money in Crypto
Crypto analyst Lark Davis says this is the best time to make money in crypto. Here’s why you should pay attention now.Why This Window Matters So MuchHow to Lock In for Maximum Gains
Top Rated Cryptos to Buy in 2025: BlockDAG, Tron, Polygon, and Polkadot Line Up Ahead of Q3 Shift
Explore the top rated cryptos to buy in 2025, featuring BlockDAG’s limited-time 'Double Your BDAG' offer, and why Tron, Polygon, and Polkadot are gaining strong attention this year1. BlockDAG (BDAG)2. Tron (TRX)3. Polygon (MATIC)4. Polkadot (DOT)Closing View on Key 2025 Contenders
Trending news
MoreCrypto prices
More
