Yesterday, the founder of CoinGecko reported a major DNS attack. Several DeFi applications, including Compound Finance, fell under the control of attackers.
How did it happen?
- The vulnerability arose from Google’s recent sale of its domain business to Squarespace. The forced migration removed 2FA, making the domains vulnerable.
- Celer Network reported an attack attempt, but its domain monitoring system detected and prevented the takeover before it could occur.
- MetaMask announced that it would warn users about potentially compromised applications related to the attack.
What to do now?
- Take a break for a couple of days until the situation resolves.
- If you urgently need to use an application, check the project’s Twitter to see if they have secured their domain.
- Interact with applications using temporary or additional wallets with low liquidity, rather than your primary ones.
