Fun

News Feed - 2023-09-21 09:09:48

Brayden Lindrea8 hours agoBalancer blames ‘social engineering attack’ on DNS provider for website hijackBlockchain security firms SlowMist and CertiK also believe the crypto wallet drainer, Angel Drainer, was involved in the estimated $238,000 exploit.1939 Total views23 Total sharesListen to article 0:00Follow upJoin us on social networksThe team behind Balancer, an Ethereum-based automated market maker, believes a social engineering attack on its DNS service provider was what led to its website’s front end being compromised on Sept. 19, leading to an estimated $238,000 in crypto stolen.


“After investigation, it is clear that this was a social engineering attack on EuroDNS, the domain registrar used for .fi TLDs,” the firm explained in a Sept. 20 X post.


Approximately eight hours after the first warning of the attack, Balancer said its decentralized autonomous organization (DAO) was actively addressing the DNS attack and was working to recover the Balancer UI.


At 5:45 pm UTC on Sept. 20, Balancer said it was successful in securing the domain and bringing it back under the control of Balancer DAO. It also confirmed its subdomains “app.balancer.fi” and “balancer.fi” are safe to use again.After investigation it is clear that this was a social engineering attack on EuroDNS, the domain registrar used for .fi TLDs.

We are exploring deprecating the .fi TLD in order to move to a more secure registrar and suggest that other projects using the TLD do the same.

[2/2]— Balancer (@Balancer) September 20, 2023


However, it suggested any other projects using the same top-level domain should consider moving to a more secure registrar. 


EuroDNS is a Luxembourg-based domain name registrar and DNS service provider. Cointelegraph has reached out to EuroDNS for comment.Angel Drainer involved


Blockchain security firms SlowMist and CertiK reported that the attacker employed Angel Drainer phishing contracts.


SlowMist said the exploiters attacked Balancer’s website via Border Gateway Protocol hijacking — a process where hackers take control of IP addresses by corrupting internet routing tables.


The hackers then induced users to “approve” and transfer funds via the “transferFrom” function to the Balancer exploiter, it explained.


Related:Breaking: ‘All funds are at risk" — Steadefi exploited in ongoing attack


The hacker, whom SlowMist believes may be related to Russia, has already bridged some of the stolen Ether (ETH) to Bitcoin (BTC) addresses via THORChain before eventually bridging the ETH back to Ethereum, blockchain security firm SlowMist explained on Sept. 20.


SlowMist stated in an earlier post that the hacker transferred about 15 wrapped-Ether (wETH.e) on the Avalanche blockchain.Balancer Hack Update

So far, we have the following findings about the @Balancer exploiter:

1/ The attacker’s fee came from the phishing group #AngelDrainer. In other words, after the attacker (AngelDrainer) attacked the website via BGP hijacking, then induced users to… https://t.co/5g6P2aPEz8 pic.twitter.com/3PInfe9VC1— MistTrack️ (@MistTrack_io) September 20, 2023


Meanwhile, despite Balancer confirming its subdomains on “balancer.fi” to now be safe, the “Deceptive site ahead” warning still appears when attempting to access Balancer’s website.Balancer’s website as of Sept. 20 at 10:22 pm UTC. Source: Balancer.


Cointelegraph reached out to Balancer to confirm the amount of funds lost, but did not receive an immediate response.


Magazine:$3.4B of Bitcoin in a popcorn tin: The Silk Road hacker’s story# Altcoin# Phishing# Hackers# DAO# DNS# Hacks# DeFiAdd reactionAdd reactionRead moreHow to earn passive income with peer-to-peer lendingHuman vs. AI: Who is better at crypto investing?Decentralized finance needs alternatives to blockchain

News Feed

Federal Reserve Index: The US Is Already in Recession
Federal Reserve Index: The US Is Already in Recession The Federal Reserve Bank of Chicago’s monthly index has plunged, suggesting that the U.S. has entered a recession. The in
Spanish Municipality Creates Its Own Cryptocurrency to Boost Economy Hurt by Coronavirus Crisis
Spanish Municipality Creates Its Own Cryptocurrency to Boost Economy Hurt by Coronavirus Crisis A municipality in the province of Sevilla, Spain, has launched it
US Judge Orders Bitcoin Ponzi Operator Imprisoned for Ignoring Court Order to Pay SEC $40 Million
US Judge Orders Bitcoin Ponzi Operator Imprisoned for Ignoring Court Order to Pay SEC $40 Million A district judge has ordered a bitcoin Ponzi operator to be arrested and imprisone
Midas․Investments Wants to Bridge the Gap With CeDeFi Strategies
Midas․Investments Wants to Bridge the Gap With CeDeFi Strategies press release PRESS RELEASE.Crypto investment platform Midas Investments has reported that it has created an infra
Alibaba Suspends Sale of Cryptocurrency Mining Hardware on Its Platform
Alibaba Suspends Sale of Cryptocurrency Mining Hardware on Its Platform Alibaba, the Chinese e-commerce giant, has announced it will no longer allow the sale of cryptocurrency mini
NFTs fall as ETH rises, Readyverse debuts metaverse game trailer: Nifty Newsletter
Ezra Reguerra5 hours agoNFTs fall as ETH rises, Readyverse debuts metaverse game trailer: Nifty NewsletterReadyverse Studios, a project co-founded by the author and producer of the hit film Ready Player One, released a t
Hashing It Out: Will 2024 be the best year for DeFi yet?
Elisha Owusu Akyaw8 hours agoHashing It Out: Will 2024 be the best year for DeFi yet?Sonali Giovino, global head of ecosystems at De.Fi, believes decentralized finance security has gotten more coverage over the years bec
Can’t Lock Down Bitcoin: Trump Ponders Halting Stock Trading, Grounding US Passenger Flights
Can"t Lock Down Bitcoin: Trump Ponders Halting Stock Trading, Grounding US Passenger Flights In the wake of the coronavirus outbreak and a looming recession, U.S. President Donal
If Dogecoin Mirrors Last Cycle, The Surge To $4 Begins At Week’s End
Este artículo también está disponible en español. After a staggering rally exceeding 200% in the first two weeks of November, Dogecoin (DOGE) has entered a consolidation
David Attlee1 hour ago6th Swiss bank joins SDX crypto exchangeHypothekarbank Lenzburg, a regional Swiss bank with over $7 billion in assets, joins SDX’s central securities depository.711 Total views15 Total sharesNewsJ
Solana fees to surpass Ethereum, trader loses over $1M due to hard fork: Finance Redefined
Prashant Jha4 hours agoSolana fees to surpass Ethereum, trader loses over $1M due to hard fork: Finance RedefinedIs Solana living up to its so-called “Ethereum-killer” status? And one trader was left over $1 million
Bitcoin, Ethereum Technical Analysis: BTC, ETH Remain Higher Ahead of Fed Rate Decision
Bitcoin, Ethereum Technical Analysis: BTC, ETH Remain Higher Ahead of Fed Rate Decision Bitcoin continues to trade close to $18,000 on Wednesday, as markets remain bullish, followi