DeFi apps targeted in apparent Squarespace DNS registry attack: Blockaid

The list of potentially affected apps includes Pendle, dYdX, Polymarket, LooksRare, and many others.

Several DeFi apps have been targeted by a domain hijacker who may have discovered an exploit in Squarespace’s registry system, Blockaid stated.

Multiple decentralized finance apps have been targeted in a domain registry attack on July 11, according to an X post from blockchain security platform Blockaid. The attacker has taken control of the DNS registry for Compound Finance and has attempted but failed to take control of Celer Network’s registry.

After a preliminary investigation, Blockaid concluded that the attacker is targeting domain names provided by Squarespace, potentially putting any DeFi app with a Squarespace domain at risk.Security researchers first became aware of the attack when the Compound interface at compound.finance began redirecting to a malicious website. The malicious site was equipped with a drainer app that attempted to steal users’ tokens.At 1:38 p.m. UTC, been attacked.

At 3:38 pm UTC, Blockaid announced that “multiple DeFi front ends are at risk of hijacking, with a few incidents already taking place” A few minutes later, the security firmthat it believed these attacks were rooted in Squarespace’s domain name registry. “From initial assessment, it appears that the attackers are operating by hijacking DNS records of projects hosted on SquareSpace,” it stated.a list of domains that may be affected by the attack.

Web3 wallet MetaMask announced that it is attempting to warn users of possibly compromised apps associated with the attack. “For those of you using MetaMask, you’ll see a warning provided by @blockaid_ if you attempt to transact on any known site that’s involved in this current attack,” it stated.into the Ledger Connect library that most Web3 apps use for wallet connections, affecting nearly the entire Ethereum Virtual Machine ecosystem.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

Cointelegraph /  🏆 562. in US

Canada Latest News, Canada Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »

American Express buys dining reservation company Tock from Squarespace for $400MA federal court ruled the ban unconstitutional.
Read more »