Curve Finance suffers another DNS hijacking attack, putting user assets at risk

ChainCatcher news, according to Cointelegraph, the DeFi protocol Curve Finance has issued an urgent warning that its official website curve.fi has suffered a DNS hijacking attack, redirecting users to a malicious phishing site. This is the second security threat the platform has faced within a week, following the hacking of its official X account on May 5.

Blockchain security company Blockaid detected that attackers may have implemented a front-end attack by tampering with DNS resolution records, advising users to immediately stop all transaction signing operations. The Curve team has contacted the domain registrar for urgent handling and confirmed that the smart contracts are unaffected, but they remind users that there is still a risk of asset theft when interacting with the platform.