CryptoWallCity vs MEXC Exchange

Curve Finance suffers from DNS attack, damage is estimated at 570,000 USD

Last night, the Curve Protocol was attacked by DNS, the damage is estimated at about 570,000 USD and the cause of the hack has been revealed.

According to Paradigm researcher samczsun, Curve’s user interface is currently compromised. The researcher has warned Curve users not to use the protocol until further notice.

Curve later appeared to confirm the mining taking place on Twitter, writing in response to samczsun, “Don’t use the UI. Are investigating!

Immediately after that announcement, the protocol found the source of the problem and fixed it. Hackers used a domain name hijacking attack, also known as a DNS attack, which means placing a malicious contract on the homepage, when the victim connects the wallet and approves the contract, it will be withdrawn, run out of money.

The original claim has been found. If you have approved any contracts on Curve in the last few hours, please revoke them immediately.

Curve claims curve.exchanges, a separate product, does not appear to be affected by the attack, as it uses a different domain name system (DNS) provider. But in response to the hack, the protocol recommends that users refrain from using curve.exchange or curve.fi until things return to normal.

On-chain data shows that the malicious contract involved in the mining apparently sucked over $573,000 in USDC and DAI from eight different victims. The funds were transferred to the attacker’s wallet and exchanged for ETH tokens, which were sent to the FixedFloat cryptocurrency exchange, first in batches of 45 ETH, then in the amount of 20 to 22 ETH.

At press time, the attacker has also begun sending tokens through the Tornado Cash crypto mixer, sanctioned by the US Treasury Department yesterday.

Curve Finance is one of the largest decentralized exchanges by total value locked (TVL), currently holding over 6 billion USD.

Comments (No)

Leave a Reply