Defi Protocol Curve Finance reportedly hacked in a DNS attack

The website of Curve Finance, the main distributed financial (DEFI) protocol, is reportedly hacked.

The team posted an urgent warning on X (formerly Twitter) and advised users not to interact with the platform. The details remain vague, but the protocol may be suffering from DNS hijacking.

Curve Finance Hacked – What You Know

The incident reportedly affected several Defi projects. Both Convex Finance and Resupply rely on Curve data feeds, reported outages, and feature issues.

Both teams have confirmed that their own platform remains secure, but the dependent services will be destroyed until Curve’s domain is restored.

DNS hijacking is a type of cyberattack in which an attacker manipulates a domain name system to redirect users to a malicious site. In this case, an attacker can trick the user into interacting with an unauthorized version of Curve’s platform.

Security experts and users have flagged it as a strong reminder of the risks associated with Defi Frontends. Unlike distributed smart contracts, web front-ends remain vulnerable to traditional attacks such as DNS hijacking.

Projects linked to curves containing Convex emphasize that users should avoid interaction with DAPP tied to curves during this period while the backend is not affected.

Curve Finance said it is working with affected partners to resolve the issue. Further updates are expected as the investigation continues.

This situation underscores the need for the Defi protocol to focus more on front-end security. Recent defi hacks reflect that Despite the distributed architecture, the frontend remains exposed vector.

This is a developing story.