Decentralized finance (DeFi) platforms Velodrome and Aerodrome front-ends were compromised twice in three days. The exploits resulted in a loss of funds and a decline in the total value of assets locked on Velodrome.
On November 29, the two platforms reported the first incident, stating that their front-ends had been compromised. These DeFi protocols urged users not to interact with the platforms pending the completion of investigations.
Velodrome and Aerodrome’s Domain Provider Issues
Velodrome and Aerodrome created an intel bounty on Arkham Intelligence, seeking information that could help identify the attackers. Investigations later revealed that the exploit was due to a social engineering attack on their domain provider. The DeFi platforms shared the information on November 30 and restored their original domains on December 1
However, some hours after the restorations, attackers targeted the domain provider again, prompting Velodrome and Aerodrome to urge users to avoid using the protocols yet again.
“It appears our provider has been exploited again. Please do not interact with our front-end,” Velodrome said.
Read more: Identifying & Exploring Risk on DeFi Lending Protocols
The domains have been restored as of press time. Still, the DeFI protocols now want to change providers to avoid a recurrence of the incident.
“The domain has been restored again and is locked at the TLD level pending transfer to a new provider,” Velodrome and Aerodrome said.
Velodrome Finance operates as an Optimism-based automated market maker.
Go to Source to See Full Article
Author: Oluwapelumi Adejumo
Tip BTC Newswire with Cryptocurrency
Donate Bitcoin to BTC Newswire
Donate Bitcoin Cash to BTC Newswire
Donate Ethereum to BTC Newswire
Donate Litecoin to BTC Newswire
Donate Monero to BTC Newswire
Donate ZCash to BTC Newswire
