Hackers compromised the DNS server of the Celer Network cross-chain bridge, cBridge. As a result, the external interface redirected some users to malicious smart contracts.
📢(1/n)A DNS cache poisoning attack on cBridge’s frontend UI appprox. during 08/17 07:45pm to 10:00 pm UTC caused some users to be redirected to malicious smart contracts that can drain all approved token amount. FIRST, PLEASE check&revoke any approval to the followings:
— CelerNetwork (@CelerNetwork) August 18, 2022
The project team said they acted quickly, so only a small portion of users were affected. All will be fully compensated.
“The Celer protocol and smart contracts were not affected. The root DNS record was not compromised and was not altered,” the developers said.
According to them, the attack, similar to the recent Curve Finance incident, targeted third-party DNS providers outside the project’s control.
“DNS compromise can occur with the frontend of any DeFi application regardless of the protocol’s own security. We strongly urge the entire blockchain community to enable Secure DNS in their browsers to reduce the risk,” the developers wrote.
They also urged users to verify smart-contract addresses and reject any suspicious ones.
Earlier this year, hackers stole assets worth $1.97 billion from crypto projects.
Follow ForkLog’s Bitcoin news on our Telegram — crypto news, prices and analysis.