Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,177
- Points
- 113
Users should avoid the Compound Finance website, which can redirect visitors to a phishing site and pose a significant security risk. This was stated by on-chain analyst ZachXBT.
Compound Finance confirmed the fact of hacking and advised not to interact with the page until further notice.
"The Compound protocol has not been affected, all funds on smart contracts are safe," project representatives assured.
The Celer Network protocol also reported hacking the website interface and the cbridge bridge.
The co-founder of the DeFiLlama 0xngmi service said that the reason lies in the vulnerability of the Squarespace site builder. It published a list of potential victims using the solution. Among them are Pendle, dYdX, Axelar, Thorchain and a number of other well-known projects.
In 2023, hackers temporarily seized control of the X Compound account to promote a phishing site.
Attackers placed ads for free tokens. It called for clicking on a link that mimics the official protocol page.
After the team's actions, the post was marked as "fraud". Four hours later, she managed to regain control of her account and delete the spam message.
*****
Opinion: Squarespace hack threatens more than 220 DeFi protocols
After an attack on DNS records hosted on Squarespace web hosting, the interfaces of approximately 228 DeFi projects remain at risk. This was announced to Decrypt by Blockaid CEO Ido Ben-Nathan.
On July 11, the incident affected Compound Finance and Celer Network, whose sites began redirecting users to phishing pages. The expert noted that the interception of DNS requests from protocols allowed attackers to use IP addresses associated with the Inferno drainer.
The use of a known malicious solution is indicated by the common on-chain and off-chain infrastructure, including smart contracts and wallets, according to Ben-Nathan.
Inferno Drainer tools allow cybercriminals to steal users funds, automatically emptying their accounts after signing malicious transactions.
The group has been trying to exploit vulnerabilities in DeFi protocols for some time, the co-founder of Blockaid emphasized. However, using a single infrastructure helps track and identify their attacks, he added.
Commenting on the Squarespace incident, the founder of Unstoppable Domains, Matthew Gould, noted that additional protection of DNS records can be provided by their verification on the blockchain. You can set up an update only through confirmation in the chain, for example, using a wallet signature, he explained.
Registrars are custodians of your domains. If they are compromised, like SquareSpace today, your website traffic can be routed without your permission to somewhere else.
Compound Finance confirmed the fact of hacking and advised not to interact with the page until further notice.
"The Compound protocol has not been affected, all funds on smart contracts are safe," project representatives assured.
The Celer Network protocol also reported hacking the website interface and the cbridge bridge.
The co-founder of the DeFiLlama 0xngmi service said that the reason lies in the vulnerability of the Squarespace site builder. It published a list of potential victims using the solution. Among them are Pendle, dYdX, Axelar, Thorchain and a number of other well-known projects.
In 2023, hackers temporarily seized control of the X Compound account to promote a phishing site.
Attackers placed ads for free tokens. It called for clicking on a link that mimics the official protocol page.
After the team's actions, the post was marked as "fraud". Four hours later, she managed to regain control of her account and delete the spam message.
*****
Opinion: Squarespace hack threatens more than 220 DeFi protocols
After an attack on DNS records hosted on Squarespace web hosting, the interfaces of approximately 228 DeFi projects remain at risk. This was announced to Decrypt by Blockaid CEO Ido Ben-Nathan.
On July 11, the incident affected Compound Finance and Celer Network, whose sites began redirecting users to phishing pages. The expert noted that the interception of DNS requests from protocols allowed attackers to use IP addresses associated with the Inferno drainer.
The use of a known malicious solution is indicated by the common on-chain and off-chain infrastructure, including smart contracts and wallets, according to Ben-Nathan.
Inferno Drainer tools allow cybercriminals to steal users funds, automatically emptying their accounts after signing malicious transactions.
The group has been trying to exploit vulnerabilities in DeFi protocols for some time, the co-founder of Blockaid emphasized. However, using a single infrastructure helps track and identify their attacks, he added.
Commenting on the Squarespace incident, the founder of Unstoppable Domains, Matthew Gould, noted that additional protection of DNS records can be provided by their verification on the blockchain. You can set up an update only through confirmation in the chain, for example, using a wallet signature, he explained.
Registrars are custodians of your domains. If they are compromised, like SquareSpace today, your website traffic can be routed without your permission to somewhere else.
