Celer Network Attack Is Causing DeFi Chaos Along With Compound Crash - Coincu
BTC $57402.78 -0.79%
ETH $3113.602 -0.73%
BNB $525.231 -0.20%
XRP $0.441 1.46%
BTC ETH BNB ADA SOL AVAX DOGE LINK TRX
USD EUR GBP JPY AUD CAD CHF CNY
Convert
LIVE UPDATES • US Lawmakers Demand Release Binance Executives by Nigerian Government! • Tether USDT Redemptions Will Be Stopped on Multiple Blockchains in 2025 • Hamster Kombat Second Airdrop Will Be Launched In The Next 2 Years • SEC Investigation Into Paxos Now Ends With Softer BUSD Classification • Iggy Azalea’s MOTHER Token Surges 47% Post DWF Labs Partnership! • TRON ($TRX) and XRP ($XRP) Shine, But DigiHorse Empires ($DIGI) is the Next Big Thing You Can’t Afford to Miss • JPMorgan Crypto Prediction Shows A Strong Market Rebound In August • DefiLlama Founder Warns: 100+ Crypto Domains Vulnerable to Attacks! • $100B Illegal Crypto Surge Hits Stablecoins, Exchanges! • Celer Network Attack Is Causing DeFi Chaos Along With Compound Crash
News Celer Network Attack Is Causing DeFi Chaos Along With Compound Crash 2 hours ago - Around 2 mins mins to read
Key Points:
Celer Network attack is causing users to malicious phishing sites, although the company assures their systems and funds are secure.
Hackers employed ‘front-end’ attacks by compromising DNS registrars and replacing legitimate websites with fraudulent versions to steal funds.
In a coordinated attack on Thursday, the websites of Celer Network and Compound Finance were compromised, redirecting users to malicious phishing sites.
Celer Network Attack Targeted in Phishing Websites
Celer Network informed its users four hours after the attack, warning them to avoid celer.network and cbridge.celer.network while they investigated a potential DNS domain attack. Despite the Celer Network attack, it assured that their systems and funds remained secure and promised further updates as the situation evolved.
The Celer Network attack used is known as a ‘front-end’ attack, where hackers replace the project’s legitimate website with a fraudulent version. The method does not exploit vulnerabilities in smart contract code but instead targets the domain name service (DNS) registrar. Attackers often use social engineering or financial incentives to compromise the DNS registrar, redirecting users to phishing sites.
Security Flaws in Squarespace Linked to Multiple DeFi Hacks
Security researcher Samczsun and DeFiLlama’s 0xngmi have identified the common link between the affected projects as their use of Squarespace for web hosting. 0xngmi has compiled a list of other potentially at-risk domains, highlighting a broader vulnerability in the DeFi space.
Earlier today, Compound Finance‘s frontend was similarly compromised, leading users to a phishing site at compound-finance.app. Security expert Michael Lewellen noted that this site could drain users’ funds if they interact with it, though the core Compound protocol and user deposits remain unaffected.
These attacks are part of a larger trend where hackers clone original websites, swapping out key elements to execute malicious transactions. These can transfer funds to hacker-controlled addresses or harvest token approvals. Other large DeFi projects using Squarespace, such as Pendle, Karak, Hyperliquid, and dYdX, may also be at risk of similar attacks.
Celer Network compound finance DeFi DNS DNS domain attack Phishing attack
Author Harold
With a passion for untangling the complexities of the financial world, I've spent over four years in financial journalism, covering everything from traditional equities to the cutting edge of venture capital. "The financial markets are a fascinating puzzle," I often say, "and I love helping people make sense of them." That's what drives me to bring clear and insightful financial journalism to the readers of Coincu.
Related Posts
US Regulators Causing Panic of Crypto Banking Services, Former Solicitors General Accuses Spot Ethereum ETF Launch Likely Set for July 15 Bitcoin ETF Inflow Sees Surge Admid Market Downturn Goldman Sachs Tokenization Projects Expected to Launch in 2024 Danish Self-custodial Wallet Ban Is Not Now Available Bitcoin Spot ETFs See $216M Net Inflow, BlackRock and Fidelity Lead Gains! Malaysian Crypto Miners Stole $722 Million in Electricity from 2018 Biden Replacement Memecoins Surge 200% Amidst Election Doubts Rise
Celer Network Attack Is Causing DeFi Chaos Along With Compound Crash
Key Points:
Celer Network attack is causing users to malicious phishing sites, although the company assures their systems and funds are secure.
Hackers employed ‘front-end’ attacks by compromising DNS registrars and replacing legitimate websites with fraudulent versions to steal funds.
In a coordinated attack on Thursday, the websites of Celer Network and Compound Finance were compromised, redirecting users to malicious phishing sites.
Celer Network Attack Targeted in Phishing Websites
Celer Network informed its users four hours after the attack, warning them to avoid celer.network and cbridge.celer.network while they investigated a potential DNS domain attack. Despite the Celer Network attack, it assured that their systems and funds remained secure and promised further updates as the situation evolved.
The Celer Network attack used is known as a ‘front-end’ attack, where hackers replace the project’s legitimate website with a fraudulent version. The method does not exploit vulnerabilities in smart contract code but instead targets the domain name service (DNS) registrar. Attackers often use social engineering or financial incentives to compromise the DNS registrar, redirecting users to phishing sites.
Security Flaws in Squarespace Linked to Multiple DeFi Hacks
Security researcher Samczsun and DeFiLlama’s 0xngmi have identified the common link between the affected projects as their use of Squarespace for web hosting. 0xngmi has compiled a list of other potentially at-risk domains, highlighting a broader vulnerability in the DeFi space.
Earlier today, Compound Finance‘s frontend was similarly compromised, leading users to a phishing site at compound-finance.app. Security expert Michael Lewellen noted that this site could drain users’ funds if they interact with it, though the core Compound protocol and user deposits remain unaffected.
These attacks are part of a larger trend where hackers clone original websites, swapping out key elements to execute malicious transactions. These can transfer funds to hacker-controlled addresses or harvest token approvals. Other large DeFi projects using Squarespace, such as Pendle, Karak, Hyperliquid, and dYdX, may also be at risk of similar attacks.
Visited 32 times, 32 visit(s) today
Other Posts
Related Posts
- 12 hours ago 2 mins
German Government Bitcoin Available Now Less Than $1 Billion Left to Sell
Knowledge
- 180 days ago 13 mins
Crypto To Crypto Converter: Detailed Guide For Beginners And Important Notes
Knowledge
- 180 days ago 12 mins
Fiat To Fiat Converter: Detailed Guide For Beginners And Important Notes
Knowledge
- 114 days ago 10 mins
Knowledge
- 126 days ago 14 mins
Free Bitcoin Code 2024: Easy Way To Own Bitcoin
Top Projects
- 92 days ago 27 mins
Top 10 Best Crypto Telegram Bots In 2024
- 13 hours ago 2 mins
Crypto Supporter Donald Trump to Address Bitcoin 2024 Conference in Nashville
Knowledge
- 81 days ago 13 mins
Bitcoin Mining: How Long Does It Take to Mine 1 Bitcoin?
24h 7D 30D Trending
- 12 hours ago 2 mins
German Government Bitcoin Available Now Less Than $1 Billion Left to Sell
- 2 days ago 2 mins
BlackRock Spot Bitcoin ETF Returns Positive With $121.3M Inflows
- 2 days ago 2 mins
BLAST Token Holders Will Be Supported With 2x Points In The Future
- 1 days ago 2 mins
ETH Futures Skyrocket to 3.1M, Hinting at Ethereum ETF Approval!
- 1 days ago 2 mins
Softer CPI and Labor Data May Prompt Fed Rate Cuts in September and December!
- 7 days ago 2 mins
Hamster Kombat’s Token Will Launch on TON Blockchain With Breakthrough Milestones
Knowledge
- 3 days ago 13 mins
Pi Network Mainnet Launch Date: Potential for a Boom in Late 2024?
- 6 days ago 2 mins
- 5 days ago 3 mins
Ether.fi Season 2 Airdrop Claim Will Be Postponed to July 6
- 4 days ago 2 mins
Bitcoin Faces Pressure Amid Mt. Gox’s Compensation and Market Caution
Knowledge
- 30 days ago 9 mins
Save Up To 35% With Exclusive Cashback Trading Code From Coincu
- 28 days ago 2 mins
Bitcoin Whale Wallets With Over 1,000 BTC Are Almost At A New All Time High
Press Releases
- 21 days ago 5 mins
After Raising $5 Million, Sealana Announces Presale Ends in 5 Days – Last Chance to Buy
- 26 days ago 3 mins
LayerZero Token Airdrop Rules Announced, Early Transactions Will Be Eewarded 3x
Press Releases
- 16 days ago 5 mins
PlayDoge ($PLAY) Achieves $5 Million Milestone in ICO, a Tamagotchi-Style Meme Coin
Latest
view more
- 1 min 2 mins
1 min
11 Jul
US Lawmakers Demand Release Binance Executives by Nigerian Government! July 11, 2024
- 5 mins ago 2 mins
5 mins ago
11 Jul
Tether USDT Redemptions Will Be Stopped on Multiple Blockchains in 2025 July 11, 2024
- 6 mins ago 2 mins
6 mins ago
11 Jul
Hamster Kombat Second Airdrop Will Be Launched In The Next 2 Years July 11, 2024
TOP Casino Projects
view more
Press Release
view more
- 56 mins ago 4 mins
56 mins ago
11 Jul
TRON ($TRX) and XRP ($XRP) Shine, But DigiHorse Empires ($DIGI) is the Next Big Thing You Can’t Afford to Miss
- 3 hours ago 5 mins
3 hours ago
11 Jul
- 6 hours ago 3 mins
6 hours ago
11 Jul
iGaming Platform BC.GAME Signs $40 Million Deal to Become Principal Partner of Leicester City
Key Points:
Celer Network attack is causing users to malicious phishing sites, although the company assures their systems and funds are secure.
Hackers employed ‘front-end’ attacks by compromising DNS registrars and replacing legitimate websites with fraudulent versions to steal funds.
In a coordinated attack on Thursday, the websites of Celer Network and Compound Finance were compromised, redirecting users to malicious phishing sites.
Celer Network Attack Targeted in Phishing Websites
Celer Network informed its users four hours after the attack, warning them to avoid celer.network and cbridge.celer.network while they investigated a potential DNS domain attack. Despite the Celer Network attack, it assured that their systems and funds remained secure and promised further updates as the situation evolved.
The Celer Network attack used is known as a ‘front-end’ attack, where hackers replace the project’s legitimate website with a fraudulent version. The method does not exploit vulnerabilities in smart contract code but instead targets the domain name service (DNS) registrar. Attackers often use social engineering or financial incentives to compromise the DNS registrar, redirecting users to phishing sites.
Security Flaws in Squarespace Linked to Multiple DeFi Hacks
Security researcher Samczsun and DeFiLlama’s 0xngmi have identified the common link between the affected projects as their use of Squarespace for web hosting. 0xngmi has compiled a list of other potentially at-risk domains, highlighting a broader vulnerability in the DeFi space.
Earlier today, Compound Finance‘s frontend was similarly compromised, leading users to a phishing site at compound-finance.app. Security expert Michael Lewellen noted that this site could drain users’ funds if they interact with it, though the core Compound protocol and user deposits remain unaffected.
These attacks are part of a larger trend where hackers clone original websites, swapping out key elements to execute malicious transactions. These can transfer funds to hacker-controlled addresses or harvest token approvals. Other large DeFi projects using Squarespace, such as Pendle, Karak, Hyperliquid, and dYdX, may also be at risk of similar attacks.
Visited 32 times, 32 visit(s) today