Curve Finance DNS Hijack: DeFi Protocol Hit by Attack
Curve Finance Suffers DNS Hijack Attack
Curve Finance, a leading decentralized finance (DeFi) protocol, experienced a DNS hijacking attack on May 12, 2025. The attack temporarily redirected users to fraudulent websites, highlighting the vulnerability of DeFi frontend interfaces.
The attack was confirmed via an urgent alert on X (formerly Twitter), warning users against interacting with the platform. The incident also impacted other DeFi projects reliant on Curve's data, including Convex Finance and Resupply, which reported temporary outages and functional issues.
Impact and Response
While Curve Finance, Convex Finance, and Resupply confirmed their core smart contracts remained secure, the DNS hijack disrupted services dependent on Curve's domain. Both Convex Finance and Curve Finance publicly acknowledged the issue and assured users that their backend systems were unaffected. However, they stressed the importance of avoiding any interactions with dApps tied to Curve until the domain was restored.
- Convex Finance confirmed its website uses data from Curve and experienced outages due to the DNS hijack.
- Resupply also reported issues stemming from the dependency on Curve's data feeds.
- Curve Finance is actively working to resolve the issue and restore its domain.
Understanding DNS Hijacking
DNS hijacking is a cyberattack where attackers manipulate the Domain Name System (DNS) to redirect users to malicious websites. In this case, users could have been tricked into interacting with fake Curve Finance platforms, potentially leading to asset loss. This underscores the importance of frontend security in DeFi, as even decentralized smart contracts can be vulnerable through compromised interfaces.
Strengthening DeFi Security
This incident serves as a stark reminder of the security risks associated with DeFi frontends. While smart contracts benefit from the inherent security of blockchain technology, the web interfaces remain susceptible to traditional attacks like DNS hijacking. The need for robust frontend security measures is paramount for all DeFi protocols.
Codeum, a leading blockchain security and development platform, offers comprehensive solutions to mitigate such risks. Our services include:
- Smart contract audits
- KYC verification
- Custom smart contract and DApp development
- Tokenomics and security consultation
- Partnerships with launchpads and crypto agencies
The Curve Finance incident highlights the crucial role of proactive security measures in the DeFi space. As the investigation continues, we will keep you updated with further developments.