Sources
Loading...
Additional media
Loading...
DeepNewz, mobile.
People-sourced. AI-powered. Unbiased News.
The website of Compound Finance, a major DeFi protocol, has been compromised and is redirecting users to a phishing site. Users are advised not to interact with the site until further notice. The Compound protocol itself remains unaffected, and all smart contract funds are safe. The security breach, confirmed by security consultant Michael Lewellen and blockchain sleuth ZachXBT on July 11, is part of a larger DNS attack that has also impacted other crypto projects, including Celer Network. The attack appears to be linked to vulnerabilities in the domain registrar Squarespace, which recently acquired Google Domains. Security experts have issued warnings to avoid interacting with affected domains and to enable two-factor authentication (2FA).
⚠️ Front-end Domains of Over 100 Crypto Projects Are at Risk of Attack via Squarespace 😱 100+ domains are at risk of exploitation by virtue of their registration with the website-building company, acc. to security experts. Click to read 👇 https://t.co/RpzjMpuAKb
🚨 Community and Partners take note! https://t.co/NRTKqQHYtu has been subject to an attack. Do NOT open emails from @unstoppabledomains.com or use the website until further notice. @squarespace @SquarespaceHelp https://t.co/eynrlcadbR
DEFI DOMAIN HIJACK ALERT Hackers exploiting Squarespace DNS, hitting multiple DeFi apps. Compound Finance compromised, Celer Network narrowly avoided a takeover. Blockaid & MetaMask issuing warnings. Check URLs and stay vigilant—protect your assets. Sources: Blockaid,… https://t.co/urlu8He5py