Yet another DeFi protocol Curve Finance has fallen victim to a black hat. Curve frontend apparently compromised — pls be careful, do not use — Cobie (@cobie) August 9, 2022 Curve Finance announced via their official Twitter that users should abstain from using the ETH-based DeFi protocol. Based on TVL, Curve is the fifth biggest […] The post Curve Finance Comprimised — Here’s What We Know So Far appeared first on CryptosRus.

Curve Finance Comprimised — Here’s What We Know So Far

Yet another DeFi protocol Curve Finance has fallen victim to a black hat.

Curve Finance announced via their official Twitter that users should abstain from using the ETH-based DeFi protocol. Based on TVL, Curve is the fifth biggest DeFi platform on Ethereum.

Recommended: Likely Solana-wallet hack culprit revealed

  • Don’t use curve.fi site – nameserver is compromised. Investigation is ongoing: likely the NS itself has a problem,” Curve Finance said via Twitter.
  • The attacker is reportedly using DNS spoofing which redirects traffic to a fraudulent site. “Although you need to proceed with caution, but curve.exchange seems to be unaffected – uses a different DNS provider,” Curve Finance explained. 
  • The idea here is
  • Twitter user Foobar also added, “When you make a swap it creates a transaction to approve 0x9Eb5F8e83359Bb5013f3D8eee60bDCe5654e8881 to spend whichever coin you’re inputting But this is not a Curve pool, your funds will be manually drained into a malicious EOA instead.”
  • The malicious externally owned account (EOA) has drained about $647,000 USD from Curve Finance users as of 5:30pm EST.
  • Various Twitter users have noted that the hacker(s) are not using Tornado Cash for this one likely because of the recent sanctions by the US Treasury. “Curve attacker using FixedFloat instead of Tornado POV you’re happy to attack a DeFi protocol but still want to respect OFAC sanctions,” one user said.

*This is a developing story. Check back for updates.

 

The post Curve Finance Comprimised — Here’s What We Know So Far appeared first on CryptosRus.