2 years ago
Samczsun, a researcher astatine Paradigm, is reporting that the Curve Finance beforehand extremity has been compromised, with implicit $530k stolen wrong a substance of minutes.
@CurveFinance frontend is compromised, bash not usage it until further notice!
— samczsun (@samczsun) August 9, 2022
The authoritative Curve Finance Twitter has confirmed the quality stating
Don't usage the frontend yet. Investigating! https://t.co/8kmtpGsLQQ
— Curve Finance (@CurveFinance) August 9, 2022
The laminitis of Rotkiapp, Lefteris Karapetsas, theorized that “It’s DNS spoofing. Cloned the site, made the DNS constituent to their ip wherever the cloned tract is deployed and added support requests to a malicious contract.” Curve retweeted the mentation successful evident enactment earlier pursuing up with a further announcement;
Don't usage https://t.co/vOeMYOTq0l tract – nameserver is compromised. Investigation is ongoing: apt the NS itself has a problem
— Curve Finance (@CurveFinance) August 9, 2022
The station Curve Finance beforehand extremity UI compromised successful DNS hack – users advised not to interact appeared archetypal connected CryptoSlate.
English (US) 