Blog
/
DeFi
Expert verified
5 min read

Curve Finance Loses Over $520K After DNS Hijack

Ayush Pande
Written by:
Ayush Pande
Reviewed by:
Ayush Pande
Curve Finance Loses Over $520K After DNS Hijack
Our Editorial Standards:

Cryptocurrencies can be volatile and high risk. Though our articles are for informational purposes only, they are written in accordance with the latest guidelines from tax agencies around the world and reviewed by certified tax professionals before publication. Learn more about our Risk Warning and Our Editorial Process.

The firm behind the CRV token, Curve Finance, became the latest victim of hacking when a DNS hijack compromised its front end. The perpetrator took control over curve.fi website's nameserver and stole at least $520K in just a few minutes after carrying out the attack.

The attack occurred just over a week after the exchange platform deployed the AAVE pool. Lefteris Karapetsas, the founder of security application Rotikapp, claims the attack was carried out by hijacking DNS; the hacker cloned Curve Finance's website and hacked the DNS to redirect to the fake website, where they added approval requests to their tampered contract.

Lefteris links the contract and claims that within an hour and a half, the perpetrator was able to launder $500K as ETH and $20K as other tokens.

In response, Curve Finance has changed its nameserver but cautions users to avoid using it yet and asks them to revoke any contracts made in the past few hours on the platform's front end using revoke.cash.

Curve Finance
DNS Hijack
Aave
Additional Resources
Crypto Tax Guide
Crypto Tax Guide
Crypto Tax Community
Claim your free preview tax report.
Try Bitcompare Free

Join 500,000 people instantly calculating their crypto taxes with Bitcompare.

How we reviewed this article

All Bitcompare articles go through a rigorous review process before publication. Learn more about our Risk Warning and the Bitcompare Editorial Process.

Ayush Pande
Written by:
Ayush Pande
Co-Founder & CEO

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

About the Author

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

About the Author
Ayush Pande
Reviewed by:
Ayush Pande
Writer

Curve Finance Loses Over $520K After DNS Hijack

The firm behind the CRV token, Curve Finance, became the latest victim of hacking when a DNS hijack compromised its front end.
DeFi
Dot
April 6, 2025
Ayush Pande

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

in
TABLE OF CONTENTS

The firm behind the CRV token, Curve Finance, became the latest victim of hacking when a DNS hijack compromised its front end. The perpetrator took control over curve.fi website's nameserver and stole at least $520K in just a few minutes after carrying out the attack.

The attack occurred just over a week after the exchange platform deployed the AAVE pool. Lefteris Karapetsas, the founder of security application Rotikapp, claims the attack was carried out by hijacking DNS; the hacker cloned Curve Finance's website and hacked the DNS to redirect to the fake website, where they added approval requests to their tampered contract.

Lefteris links the contract and claims that within an hour and a half, the perpetrator was able to launder $500K as ETH and $20K as other tokens.

In response, Curve Finance has changed its nameserver but cautions users to avoid using it yet and asks them to revoke any contracts made in the past few hours on the platform's front end using revoke.cash.

Curve Finance
DNS Hijack
Aave
Tax Season Ready

Calculate Your Crypto Taxes

Join thousands of traders who trust us to handle their crypto tax calculations with precision and ease.

No credit card needed
Instant tax forms
No obligations
Get Started For Free Trusted by 50,000+ users
💰
📊
📝
Crypto Tax Community

Join Our Crypto Tax Community

Share strategies, discover tax-saving opportunities, and build connections with fellow crypto investors navigating the complex world of digital asset taxation.

Join Our Community
PRODUCT
How it worksPricingReviewsProfesisonal services
TOOLS
Crypto tax calculatorCrypto profit calculatorCrypto portfolio trackerCrypto balance checkerCrypto dashboardCrypto converterCrypto fear & greed index
COMPANY
About usPartner with usCareersPressContact usCompareTerms & ConditionsPrivacy PolicyDisclaimer
SUPPORT
FAQs
Help Center
Security
USER LINKS
Crypto tax guidesAffiliateFind a crypto tax expertBest crypto tax software
©  2025 Blue Venture Studios Pte Ltd
68 Circular Road, #02-01, 049422, Singapore
BestReviewsLearn
DeFi
August 9, 2022

Curve Finance Loses Over $520K After DNS Hijack

HomeDeFi
Blog Post
Contents

The firm behind the CRV token, Curve Finance, became the latest victim of hacking when a DNS hijack compromised its front end. The perpetrator took control over curve.fi website's nameserver and stole at least $520K in just a few minutes after carrying out the attack.

The attack occurred just over a week after the exchange platform deployed the AAVE pool. Lefteris Karapetsas, the founder of security application Rotikapp, claims the attack was carried out by hijacking DNS; the hacker cloned Curve Finance's website and hacked the DNS to redirect to the fake website, where they added approval requests to their tampered contract.

Lefteris links the contract and claims that within an hour and a half, the perpetrator was able to launder $500K as ETH and $20K as other tokens.

In response, Curve Finance has changed its nameserver but cautions users to avoid using it yet and asks them to revoke any contracts made in the past few hours on the platform's front end using revoke.cash.

Curve Finance
DNS Hijack
Aave
Ayush Pande

As a tech enthusiast who's always on the prowl for the latest developments concerning crypto and hardware, you can find him covering news stories or tinkering with PCs.

in

The firm behind the CRV token, Curve Finance, became the latest victim of hacking when a DNS hijack compromised its front end. The perpetrator took control over curve.fi website's nameserver and stole at least $520K in just a few minutes after carrying out the attack.

The attack occurred just over a week after the exchange platform deployed the AAVE pool. Lefteris Karapetsas, the founder of security application Rotikapp, claims the attack was carried out by hijacking DNS; the hacker cloned Curve Finance's website and hacked the DNS to redirect to the fake website, where they added approval requests to their tampered contract.

Lefteris links the contract and claims that within an hour and a half, the perpetrator was able to launder $500K as ETH and $20K as other tokens.

In response, Curve Finance has changed its nameserver but cautions users to avoid using it yet and asks them to revoke any contracts made in the past few hours on the platform's front end using revoke.cash.

Written by
Ayush Pande
Curve Finance
DNS Hijack
Aave

Infura And Alchemy Blacklist Tornado Cash

Crypto lending
August 9, 2022
Blockchain development firms Infura and Alchemy are the latest companies to block Tornado Cash after the U.S. Treasury banned the platform and all its services.

DeFi Total Value Locked Drops By 66% But Metrics Report Steady Growth

DeFi
August 9, 2022
Total Value Locked in DeFi declined by 66%, but many factors, including DEX aggregators, active addresses, and ongoing fundraising indicate growth reveal that “DeFi winter” is yet to come. 

Crypto Exchanges Bitfinex And Hotbit Under Criminal Investigation

Crypto exchanges
August 11, 2022
Crypto Exchange Platforms Bitfinex and Hotbit face criminal investigation as authorities begin cracking down on these firms. 

Binance To Support Ethereum Merge And May List Fork Tokens

Crypto exchanges
August 10, 2022
The notable Ethereum “Merge” event could lead to many forks and Binance is open to listing them on the exchange.

Hiring a Portugal Golden Visa Lawyer: The Ultimate Comprehensive Guide

Crypto tax
May 15, 2025
Explore our ultimate guide to hiring a Portugal Golden Visa lawyer. Learn essential tips and expert advice on choosing the right legal assistance to navigate the application process.

Altcoins on the Rise: Where Does Dogecoin Fit in the Market?

Altcoins
March 12, 2025
Dogecoin, originally launched as a meme, has evolved into a significant player in the altcoin market with strengths like low transaction fees and mainstream acceptance, although it lacks advanced technological features compared to other cryptocurrencies. Its future hinges on leveraging its vibrant community and potential improvements to enhance real-world usage and secure its position in the dynamic cryptocurrency ecosystem.

Ethereum Community Conference (EthCC): What it is and Why it Matters

Ethereum
March 12, 2025
The Ethereum Community Conference (EthCC) 2025, taking place in Cannes from June 30th to July 3rd, is set to be the largest European Ethereum event, focusing on knowledge sharing and collaboration with more than 6400 attendees, 390 speakers, and a variety of side events covering key topics like layer 2 technologies, decentralized finance, and non-fungible tokens.

What Might 2025 Have in Store for Bitcoin?

Bitcoin
February 27, 2025
Bitcoin is expected to continue its growth and adoption, driven by increased regulation, the rise of Bitcoin ETFs, and wider acceptance in commercial spaces, despite challenges such as mining profitability and geopolitical influences.

The Possibility of an Altcoin Season in the Face of Low Bitcoin Dominance

Altcoins
January 8, 2025
The possibility of an altcoin season is currently low due to a bearish market sentiment, low Bitcoin dominance, and the underperformance of leading altcoins alongside Bitcoin's relatively stable trading range.

How a Strong Online Presence Can Help Crypto Projects Stand Out

Crypto Trading
January 1, 2025
A strong online presence is crucial for cryptocurrency projects to differentiate themselves and achieve success in a saturated market by leveraging professional websites, active social media engagement, content marketing, SEO, and community building.

Monero in the DeFi Space: Is Privacy a Viable Solution for Decentralized Finance?

DeFi
December 27, 2024
Monero's privacy features face integration challenges in DeFi, but potential solutions exist to merge these technologies.

5 Apps Every Serious Crypto Trader Needs on Their Phone

Crypto Trading
October 3, 2024
Cool apps that every crypto trader should have to ensure a more efficient and secure trading journey.

Bitcoin Price Stagnates Amid Mixed Market Signals

News
September 2, 2024
Bitcoin's price remains stagnant due to mixed market signals, including potential sell pressure from large BTC releases and uncertain demand ahead of the U.S. Federal Reserve meeting.

Shiba Inu Whale Trades $3.5 Million in SHIB for AI Token FET Amid Market Shifts

News
September 1, 2024
A Shiba Inu whale swapped $3.5 million worth of SHIB for the AI token FET, reflecting a strategic shift towards AI-focused assets amid declining memecoin value.

XRP Whale Activity Hits Four-Year Low: What Does It Mean for Traders?

News
September 1, 2024
XRP struggles at $0.585, but whale activity and stable network metrics suggest a long-term bullish outlook despite short-term volatility.

Bitcoin’s Decline Could Mean Gains for Solana: $187 Target in Sight

News
August 31, 2024
A potential decline in Bitcoin's dominance could trigger an altcoin rally, with Solana (SOL) potentially aiming for a $187 target.
The trusted provider of rates and financial information
AI JobsPromptPalBecome a partnerContact usLegalPrivacySitemapCareersAbout
Get crypto smart in 5 minutes
Join readers from Coinbase, a16z, Binance, Uniswap, Sequoia and more for the latest staking rewards, tips, insights and news.
No spam, unsubscribe anytime. Read our Privacy Policy.
YOUR SUBSCRIPTION WAS SUCCESSFUL
Oops! Something went wrong while submitting the form.
© 2024 Bitcompare
A Blu.Ventures companyAdvertisePolicyTerms of UseSitemap

Bitcompare is a trading name of Blue Venture Studios Pte Ltd, 68 Circular Road, #02-01, 049422, Singapore.

Advertiser disclosure: Bitcompare is a comparison engine that relies on advertising for funding. The business opportunities that can be found on this site are offered by companies with which Bitcompare has made deals. This relationship may affect the way and where products appear on the site, such as in what order they are listed in categories. Information about products may also be placed based on other factors, such as the ranking algorithms on our website. Bitcompare does not look at or list all companies or products on the market.

Editorial disclosure: The editorial content on Bitcompare is not provided by any of the companies mentioned, and has not been reviewed, approved, or otherwise endorsed by any of these entities. The opinions expressed here are the author’s alone. Additionally, the opinions expressed by the commenters do not necessarily reflect those of Bitcompare or its staff. When you leave a comment on this site, it will not show up until a Bitcompare administrator approves it.

Warning: The price of digital assets can be volatile. The value of your investment can go down or up, and you may not get back the amount invested. You are the only one who is responsible for the money you invest, and Bitcompare is not responsible for any losses you might have. Any APR shown is a rough estimate of how much cryptocurrency you will earn in rewards over the time period you choose. It does not display the actual or predicted returns or yields in any fiat currency. The APR is adjusted daily, and the estimated rewards may differ from the actual rewards generated. The information on this page is not meant to be a sign from Bitcompare that the information is correct or reliable. Before making any investment, you should carefully consider your investment experience, financial situation, investment objectives, and risk tolerance, and consult with an independent financial advisor. Links to third-party sites are not under the control of Bitcompare, and we are not responsible for the reliability or accuracy of such sites or their contents. For more information, see the Terms of Service for Bitcompare and our Risk Warning.