Trusted

Multiple DeFi Protocols Resume Operations Following GoDaddy Exploit

2 mins
Updated by Geraint Price
Join our Trading Community on Telegram

In Brief

  • Attackers used an exploit in a hosting service to attack several DeFi protocols.
  • Most of these protocols have fixed the vulnerability and are now returning to normalcy.
  • Another attack took place on CoinGecko and Etherscan via a malicious ad script through Coinzilla.
  • promo

A GoDaddy exploit saw attackers hack multiple DeFi protocols, which have only just come back to regular functionality. In a separate incident, attackers used a malicious advertisement script through Coinzilla to attack CoinGecko and Etherscan.

Several cryptocurrency platforms are resuming functionality following a hack that took place via a GoDaddy exploit late last week. The platforms affected include SpiritSwap, QuickSwap, and Dextools.

The attacker used a phishing attack in an attempt to steal funds. Some platforms have reported thefts, but so far, it only appears to be comparatively small amounts for most platforms.

Users alerted the respective platforms that there were popups from MetaMask asking for a connection to a malicious site.

In a separate incident, CoinGecko and Etherscan were exploited through a third-party service. CoinGecko said that the phishing attack was a result of a malicious advertising script by the crypto advertising network Coinzilla. Etherscan also said that a third-party integration was the cause.

In the case of SpiritSwap, the attacker was able “to modify the frontend to divert funds to a wallet under their own control.” In this case, the attacker was able to make away with $18,000.

Most platforms have announced that they have regained access, but there has been no news on the attackers. Both attacks are bold ones that cover many popular websites, including CoinGecko and Etherscan. There will surely be more attention to using external services as a result.

DeFi platforms not immune to external exploits

The attack is yet another one to take place in the DeFi market. The space is known to be prone to attacks, simply because it sees such a large influx of funds and is the perfect target for hackers looking to make away with funds. However, most attacks are due to flash loan exploits and general code vulnerabilities.

This time, the attack has taken place via a third-party integration, and platforms will have to be wary. If such exploits can take place, then it is possible that other integrations also have vulnerabilities.

🎄Best crypto platforms in Europe | December 2024
eToro eToro Explore
Coinrule Coinrule Explore
Uphold Uphold Explore
Coinbase Coinbase Explore
3Commas 3Commas Explore
🎄Best crypto platforms in Europe | December 2024
eToro eToro Explore
Coinrule Coinrule Explore
Uphold Uphold Explore
Coinbase Coinbase Explore
3Commas 3Commas Explore
🎄Best crypto platforms in Europe | December 2024

Disclaimer

In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and ConditionsPrivacy Policy, and Disclaimers have been updated.

Rahul-Nambiampurath.jpg
Rahul Nambiampurath
Rahul Nambiampurath's cryptocurrency journey first began in 2014 when he stumbled upon Satoshi's Bitcoin whitepaper. With a bachelor's degree in Commerce and an MBA in Finance from Sikkim Manipal University, he was among the few that first recognized the sheer untapped potential of decentralized technologies. Since then, he has helped DeFi platforms like Balancer and Sidus Heroes — a web3 metaverse — as well as CEXs like Bitso (Mexico's biggest) and Overbit to reach new heights with his...
READ FULL BIO
Sponsored
Sponsored