Curve Finance resolves site exploit, directs users to revoke any recent contracts

Ethereum

On Aug 9, automated market maker Curve Finance took to Twitter to warn users of an ongoing exploit on its site. The team behind the protocol noted that the issue, which appears to be an attack from a malicious actor, was affecting the service’s nameserver and frontend.

Curve stated via Twitter that its exchange — which is a separate product — appeared to be unaffected by the attack, as it uses a different DNS provider. The team still encouraged users to exercise caution when interacting with the site, however.

Twitter user LefterisJP speculated that the alleged attacker had likely utilized DNS spoofing to execute the exploit on the service:

Other participants in the DeFi space quickly took to Twitter to spread the warning to their own followers, with some noting that the alleged thief appears to have stolen more than $573K USD at time of publication.

This story is in development, and will be updated as more information becomes available.

Articles You May Like

Moonbirds creator Kevin Rose loses $1.1M+ in NFTs after 1 wrong move
‘Prohibitive’ Capital Rules for Banks Holding Crypto Win Support in EU Parliament
Microsoft CEO Satya Nadella Praises Metaverse ‘Sense of Presence,’ Calls It ‘Game-Changing’
Casting Stones From a Glass House: Yellen’s Comments on Zambia’s Debt Restructuring Draw Criticism From Chinese Embassy
CFTC’s Johnson urges Congress to expand commission’s crypto oversight powers