Curve Finance, a key DeFi protocol, experienced a reported DNS hijack, prompting urgent warnings to users advising them not to access or interact with the website. The attack potentially enabled hackers to redirect users to fraudulent versions of Curve's frontend, putting funds at risk. Convex Finance and Resupply, platforms reliant on Curve’s data feeds, reported significant disruptions, though both confirmed their backends remain secure and unaffected.
This hijacking method is reminiscent of a previous August 2022 attack, which led to substantial user losses and highlighted core DeFi vulnerabilities. While Curve’s smart contracts and backend systems remain safe, the frontend compromise underscores the persistent risks associated with web-based interfaces in decentralized finance. Curve Finance is now collaborating with affected partners to resolve the issue and restore safe access. The incident reignites urgent calls for improved DeFi frontend security and stronger user-safety protocols across the sector as further updates are pending.