Ad
News
Curve Finance front end UI compromised following DNS hack – users advised to exercise caution Curve Finance front end UI compromised following DNS hack – users advised to exercise caution

Curve Finance front end UI compromised following DNS hack – users advised to exercise caution

Over $500k has been stolen from Curve finance as the front end is compromised through an attack taking control of its nameserver.

Curve Finance front end UI compromised following DNS hack – users advised to exercise caution

Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.

Update: Curve has announced the issue has been fixed and says it is safe to use again. Follow up article can be found here

Samczsun, a researcher at Paradigm, reported that the Curve Finance front end had been compromised, with over $500k stolen within a matter of minutes.

The official Curve Finance Twitter had confirmed the news stating:

The founder of Rotkiapp, Lefteris Karapetsas, theorized that “It’s DNS spoofing. Cloned the site, made the DNS point to their ip where the cloned site is deployed and added approval requests to a malicious contract.” Curve retweeted the theory in apparent support before following up with a further announcement;

Mentioned in this article
Posted In: Crime, DeFi, Hacks