In the latest spoofing attack, the Convex Finance decentralized staking platform’s DNS (domain name server) was targeted.
- As early as July 23, a Convex Finance smart contract address was detected by Alexintosh, an angel investor.
- A DNS spoofing attack may have been carried out on Convex Finance’s website by a hostile party.
- Users were unwittingly agreeing to harmful contracts for specific website interactions when the staking platform’s DNS was hijacked, it was confirmed following the incident
- While the inquiry is ongoing, Convex has urged users to use two alternate domain names to access the site.
- Five wallets were flagged by the platform as vulnerable to the attack. There was no impact on validated contracts’ funds, according to the team, though.
- The hacker used Tornado Cash, a currency mixer, to move the stolen money to a wallet marked as “Convex Phisher Deposits,” which reveals a modest quantity of crypto from the victims.
- As promised, a comprehensive post-mortem report will be released shortly by Convex Finance.
- A DNS hijacking assault on Ribbon Finance, a decentralized structured products protocol, was also reported by MistTrack, a crypto tracking and compliance platform.
It appears to be the same attacker as Convex, according to on-chain analysis.
You can get a free $100 from Binance and a 10% discount on your first month’s fees by registering through this special link (terms).
Special Offer from PrimeXBT: To obtain a bonus of up to $7,000 on your deposits, follow this link and register using the code POTATO50.