Update May 13, 12:33 AM UTC: This article has been updated to include more information than curve finance.
Decentralized Finance (Defi) Protocol Curve Finance has warned that a hacker has again kidnapped its domain name system (DNS), which has been sent to users to a malicious website.
In a second attack on its infrastructure in a week, “Curve. DNS may be kidnapped. Don’t interact!” Team Said Warning to X on 12 May.
A user was asked in a follow -up post whether it is hack or kidnapping, curve team Said The website “indicates the wrong IP” when users try to travel. A DNS acts like a directory that turns the domain names into an IP address.
Also team Said Another update that “password is safe,” its two-factor authentication was “long before”, and a question has been sent to “Registrar Nau”.
“While all smart contracts are safe, the domain name indicates a malicious site that can eliminate your wallet! We are investigating and working on recovering access. There is no sign of compromising on our side,” the curve. Said,
Curve Finance was killed in August 2022 with a similar front and attack. In a post -mortem, the consensus was that the attackers managed to clone the curve finance website and rebuild the DNS server on the fake page.
Users who attempted to use the platform, have their funds dried into a pool operated by the attackers.
Cointelegraph has contacted curve finance for comments.
Curve Finance Possible Front-And Attack
Onchain Security Firm Blockid also recently detected unusual activity from the Curve website, warning users to stay away and avoid interacting for now.
This can be a case of “potential front stand attack”, According For safety firm, which is hackers Target The website users interact with buttons, forms, or lessons on the site to steal sensitive data.
“If you are connected, please avoid signing the transaction and the problem is not solved until he avoids interaction with the DAPP. We are working closely with the affected partners. Soon more updates,” BlockAd said.
Connected: Crypto hackers hit Defafi for $ 92m in April, as an attack from March
Another attack in a week
This is the second time the curve finance has been targeted in the last week. On 5 May, a hacker handled its official X handle.
The team said in the May 6 post, “To clarify: The incident was limited to the X account. No other curve accounts were affected. No security issues were found on our side, no user funds were affected, and the hacker did not hunt the fishing link, which was posted by the hacker.”
Curve Finance X account was quickly restored, and the reason is still under investigation.
A group of other high-profile X accounts have also been taken by bad actors this year. On 2 May, the Tron DO account was kidnapped; Meanwhile, on 15 April, Lucy Powell, a member of the UK Parliament, had taken his account to promote a scam crypto token called the House of Commons Coin (HOC).
magazine: Financial numerism in Crypto is over – this is the time to dream again
