BestReviewsLearn

Celer Network’s cBridge Frontend Hit By DNS Hijack

Level 2 scaling protocol Celer Network is the latest target of crypto hacking as the platform reports seeing potential signs of a DNS hijack of its cBridge frontend.
DeFi
Dot
January 29, 2023
Ayush Pande

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

in
TABLE OF CONTENTS
“A DNS cache poisoning attack on cBridge’s frontend UI approx. during 08/17 07:45pm to 10:00 pm UTC caused some users to be redirected to malicious smart contracts that can drain all approved token amount.”

Level 2 scaling protocol Celer Network is the latest target of crypto hacking as the platform reports seeing potential signs of a DNS hijack of its cBridge frontend. This makes Celer Network the second victim of a DNS hijack, as Curve Finance was hit by a similar breach at the beginning of the month when the hackers escaped with over $520K from the platform.

Earlier today, the platform revealed its frontend was compromised by a DNS attack which directed Celer Network users to a fake webpage containing malicious contracts. Celer Network uploaded ten of these contracts on Twitter and asked its users to revoke their token approvals. The tampered contracts requesting token approvals include Ethereum, Avalanche, Aurora, and Aster contracts, among others.

In a follow-up to the original tweet, Celer Network clarifies that the Celer protocol and smart contracts remained unaffected by the attack. Moreover, the platform’s root DNS remained uncompromised as the perpetrators targeted third-party DNS providers.

Fortunately, Celer reports only a tiny percentage of users were affected by the hijack, and the cBridge frontend UI is now up and running, with additional monitoring to increase security. Lastly, Celer Network cautions its users to always verify contract addresses as DNSSEC features are rarely implemented on DeFi apps, which makes it easier to carry out DNS poisoning attacks. 

Celer Network
DNS Hijack
Hacking
Curve Finance
Security Breach
The trusted provider of rates and financial information
AI JobsPromptPalBecome a partnerContact usLegalPrivacySitemapCareersAbout
Get crypto smart in 5 minutes
Join readers from Coinbase, a16z, Binance, Uniswap, Sequoia and more for the latest staking rewards, tips, insights and news.
No spam, unsubscribe anytime. Read our Privacy Policy.
YOUR SUBSCRIPTION WAS SUCCESSFUL
Oops! Something went wrong while submitting the form.
© 2024 Bitcompare
A Blu.Ventures companyAdvertisePolicyTerms of UseSitemap

Bitcompare.net is a trading name of Tokentalk Ltd. Registered in England No. 11332964. Registered Office: Unit 3 Mitcham Industrial Estate, 85 Streatham Road, Mitcham, United Kingdom, CR4 2AP.

Advertiser disclosure: Bitcompare is a comparison engine that relies on advertising for funding. The business opportunities that can be found on this site are offered by companies with which Bitcompare has made deals. This relationship may affect the way and where products appear on the site, such as in what order they are listed in categories. Information about products may also be placed based on other factors, such as the ranking algorithms on our website. Bitcompare does not look at or list all companies or products on the market.

Editorial disclosure: The editorial content on Bitcompare is not provided by any of the companies mentioned, and has not been reviewed, approved, or otherwise endorsed by any of these entities. The opinions expressed here are the author’s alone. Additionally, the opinions expressed by the commenters do not necessarily reflect those of Bitcompare or its staff. When you leave a comment on this site, it will not show up until a Bitcompare administrator approves it.

Warning: The price of digital assets can be volatile. The value of your investment can go down or up, and you may not get back the amount invested. You are the only one who is responsible for the money you invest, and Bitcompare is not responsible for any losses you might have. Any APR shown is a rough estimate of how much cryptocurrency you will earn in rewards over the time period you choose. It does not display the actual or predicted returns or yields in any fiat currency. The APR is adjusted daily, and the estimated rewards may differ from the actual rewards generated. The information on this page is not meant to be a sign from Bitcompare that the information is correct or reliable. Before making any investment, you should carefully consider your investment experience, financial situation, investment objectives, and risk tolerance, and consult with an independent financial advisor. Links to third-party sites are not under the control of Bitcompare, and we are not responsible for the reliability or accuracy of such sites or their contents. For more information, see the Terms of Service for Bitcompare and our Risk Warning.

BestReviewsLearn
DeFi
August 18, 2022

Celer Network’s cBridge Frontend Hit By DNS Hijack

HomeDeFi
Blog Post
Contents
“A DNS cache poisoning attack on cBridge’s frontend UI approx. during 08/17 07:45pm to 10:00 pm UTC caused some users to be redirected to malicious smart contracts that can drain all approved token amount.”

Level 2 scaling protocol Celer Network is the latest target of crypto hacking as the platform reports seeing potential signs of a DNS hijack of its cBridge frontend. This makes Celer Network the second victim of a DNS hijack, as Curve Finance was hit by a similar breach at the beginning of the month when the hackers escaped with over $520K from the platform.

Earlier today, the platform revealed its frontend was compromised by a DNS attack which directed Celer Network users to a fake webpage containing malicious contracts. Celer Network uploaded ten of these contracts on Twitter and asked its users to revoke their token approvals. The tampered contracts requesting token approvals include Ethereum, Avalanche, Aurora, and Aster contracts, among others.

In a follow-up to the original tweet, Celer Network clarifies that the Celer protocol and smart contracts remained unaffected by the attack. Moreover, the platform’s root DNS remained uncompromised as the perpetrators targeted third-party DNS providers.

Fortunately, Celer reports only a tiny percentage of users were affected by the hijack, and the cBridge frontend UI is now up and running, with additional monitoring to increase security. Lastly, Celer Network cautions its users to always verify contract addresses as DNSSEC features are rarely implemented on DeFi apps, which makes it easier to carry out DNS poisoning attacks. 

Celer Network
DNS Hijack
Hacking
Curve Finance
Security Breach
Ayush Pande

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

in
“A DNS cache poisoning attack on cBridge’s frontend UI approx. during 08/17 07:45pm to 10:00 pm UTC caused some users to be redirected to malicious smart contracts that can drain all approved token amount.”

Level 2 scaling protocol Celer Network is the latest target of crypto hacking as the platform reports seeing potential signs of a DNS hijack of its cBridge frontend. This makes Celer Network the second victim of a DNS hijack, as Curve Finance was hit by a similar breach at the beginning of the month when the hackers escaped with over $520K from the platform.

Earlier today, the platform revealed its frontend was compromised by a DNS attack which directed Celer Network users to a fake webpage containing malicious contracts. Celer Network uploaded ten of these contracts on Twitter and asked its users to revoke their token approvals. The tampered contracts requesting token approvals include Ethereum, Avalanche, Aurora, and Aster contracts, among others.

In a follow-up to the original tweet, Celer Network clarifies that the Celer protocol and smart contracts remained unaffected by the attack. Moreover, the platform’s root DNS remained uncompromised as the perpetrators targeted third-party DNS providers.

Fortunately, Celer reports only a tiny percentage of users were affected by the hijack, and the cBridge frontend UI is now up and running, with additional monitoring to increase security. Lastly, Celer Network cautions its users to always verify contract addresses as DNSSEC features are rarely implemented on DeFi apps, which makes it easier to carry out DNS poisoning attacks. 

Written by
Ayush Pande
Celer Network
DNS Hijack
Hacking
Curve Finance
Security Breach

Velodrome Accuses Former Team Member Of Stealing Funds During Recent Hack

DeFi
August 13, 2022
Velodrome accused a former team member of being the culprit behind the theft of $350K from the team’s wallet in August.

Acala Network Suffers Security Breach, Passes Vote To Halt Operations

DeFi
August 14, 2022
Acala, Polkadot’s decentralized finance network, had its protocols tampered with by hackers, causing it to pass an urgent vote to suspend operations until the issue is resolved.

Ethereum Team Debunks Common ‘Misconceptions’ About The Scheduled Merge

Ethereum
August 17, 2022
Ethereum users have expressed their fears about the proposed Merge, prompting the development team to address the misconceptions.

BlueBenx Suspends Withdrawals Following $32M Hack

Crypto lending
August 14, 2022
Brazilian crypto lending company, BlueBenx halts all crypto withdrawals after a recent hack.

5 Apps Every Serious Crypto Trader Needs on Their Phone

Crypto Trading
October 3, 2024
Cool apps that every crypto trader should have to ensure a more efficient and secure trading journey.

Bitcoin Price Stagnates Amid Mixed Market Signals

News
September 2, 2024
Bitcoin's price remains stagnant due to mixed market signals, including potential sell pressure from large BTC releases and uncertain demand ahead of the U.S. Federal Reserve meeting.

Shiba Inu Whale Trades $3.5 Million in SHIB for AI Token FET Amid Market Shifts

News
September 1, 2024
A Shiba Inu whale swapped $3.5 million worth of SHIB for the AI token FET, reflecting a strategic shift towards AI-focused assets amid declining memecoin value.

XRP Whale Activity Hits Four-Year Low: What Does It Mean for Traders?

News
September 1, 2024
XRP struggles at $0.585, but whale activity and stable network metrics suggest a long-term bullish outlook despite short-term volatility.

Bitcoin’s Decline Could Mean Gains for Solana: $187 Target in Sight

News
August 31, 2024
A potential decline in Bitcoin's dominance could trigger an altcoin rally, with Solana (SOL) potentially aiming for a $187 target.

Vitalik Buterin Refutes Claims of Selling Ether for Profit

News
August 31, 2024
Ethereum co-founder Vitalik Buterin denies selling Ether for personal profit, stating that his sales were to support various crypto projects and philanthropic efforts.

Third Negative Funding Rate Reading for BNB Since 2023 Raises Concerns

News
August 31, 2024
Binance's funding rates have turned negative for the third time since 2023, signaling potential bearish market sentiment and a decline in demand for Binance Coin (BNB) long positions amid increased selling pressure and external controversies.

Bitcoin's Next Move: Will It Break $67K or Remain Below $60K?

News
August 31, 2024
Bitcoin is trading near a critical support level around $59K, with mixed technical signals suggesting potential further declines or a rally toward $67K, amid a generally bullish on-chain outlook.

Ethereum Whale Sells 6,900 ETH – Is It Time to Worry?

News
August 31, 2024
An Ethereum whale has sold 6,900 ETH, valued at $17.87 million, amid a balanced market environment and continued decline in exchange reserves, raising questions about potential bearish trends.

Ethereum Signals Potential Price Reversal: Bullish Divergence Forms for the First Time in Two Years

News
August 30, 2024
Ethereum is showing signs of a potential price reversal with its first bullish divergence in over two years, supported by technical indicators and macroeconomic factors.

Bitcoin Slips Below $59,000 as Institutional Demand Declines; BlackRock's IBIT Records Second Outflow

News
August 30, 2024
Bitcoin fell below $59,000 amid waning demand and significant outflows from major ETFs, including BlackRock's IBIT, signaling cautious market sentiment and potential volatility ahead.

Aptos Network Partners with Nillion to Enhance Privacy for Decentralized Applications

News
August 29, 2024
Aptos is integrating privacy platform Nillion to enhance privacy-preserving applications on its blockchain, enabling secure handling of sensitive data for decentralized apps.
The trusted provider of rates and financial information
AI JobsPromptPalBecome a partnerContact usLegalPrivacySitemapCareersAbout
Get crypto smart in 5 minutes
Join readers from Coinbase, a16z, Binance, Uniswap, Sequoia and more for the latest staking rewards, tips, insights and news.
No spam, unsubscribe anytime. Read our Privacy Policy.
YOUR SUBSCRIPTION WAS SUCCESSFUL
Oops! Something went wrong while submitting the form.
© 2024 Bitcompare
A Blu.Ventures companyAdvertisePolicyTerms of UseSitemap

Bitcompare.net is a trading name of Tokentalk Ltd. Registered in England No. 11332964. Registered Office: Unit 3 Mitcham Industrial Estate, 85 Streatham Road, Mitcham, United Kingdom, CR4 2AP.

Advertiser disclosure: Bitcompare is a comparison engine that relies on advertising for funding. The business opportunities that can be found on this site are offered by companies with which Bitcompare has made deals. This relationship may affect the way and where products appear on the site, such as in what order they are listed in categories. Information about products may also be placed based on other factors, such as the ranking algorithms on our website. Bitcompare does not look at or list all companies or products on the market.

Editorial disclosure: The editorial content on Bitcompare is not provided by any of the companies mentioned, and has not been reviewed, approved, or otherwise endorsed by any of these entities. The opinions expressed here are the author’s alone. Additionally, the opinions expressed by the commenters do not necessarily reflect those of Bitcompare or its staff. When you leave a comment on this site, it will not show up until a Bitcompare administrator approves it.

Warning: The price of digital assets can be volatile. The value of your investment can go down or up, and you may not get back the amount invested. You are the only one who is responsible for the money you invest, and Bitcompare is not responsible for any losses you might have. Any APR shown is a rough estimate of how much cryptocurrency you will earn in rewards over the time period you choose. It does not display the actual or predicted returns or yields in any fiat currency. The APR is adjusted daily, and the estimated rewards may differ from the actual rewards generated. The information on this page is not meant to be a sign from Bitcompare that the information is correct or reliable. Before making any investment, you should carefully consider your investment experience, financial situation, investment objectives, and risk tolerance, and consult with an independent financial advisor. Links to third-party sites are not under the control of Bitcompare, and we are not responsible for the reliability or accuracy of such sites or their contents. For more information, see the Terms of Service for Bitcompare and our Risk Warning.