Fun

News Feed - 2023-09-21 09:09:48

Brayden Lindrea8 hours agoBalancer blames ‘social engineering attack’ on DNS provider for website hijackBlockchain security firms SlowMist and CertiK also believe the crypto wallet drainer, Angel Drainer, was involved in the estimated $238,000 exploit.1939 Total views23 Total sharesListen to article 0:00Follow upJoin us on social networksThe team behind Balancer, an Ethereum-based automated market maker, believes a social engineering attack on its DNS service provider was what led to its website’s front end being compromised on Sept. 19, leading to an estimated $238,000 in crypto stolen.


“After investigation, it is clear that this was a social engineering attack on EuroDNS, the domain registrar used for .fi TLDs,” the firm explained in a Sept. 20 X post.


Approximately eight hours after the first warning of the attack, Balancer said its decentralized autonomous organization (DAO) was actively addressing the DNS attack and was working to recover the Balancer UI.


At 5:45 pm UTC on Sept. 20, Balancer said it was successful in securing the domain and bringing it back under the control of Balancer DAO. It also confirmed its subdomains “app.balancer.fi” and “balancer.fi” are safe to use again.After investigation it is clear that this was a social engineering attack on EuroDNS, the domain registrar used for .fi TLDs.

We are exploring deprecating the .fi TLD in order to move to a more secure registrar and suggest that other projects using the TLD do the same.

[2/2]— Balancer (@Balancer) September 20, 2023


However, it suggested any other projects using the same top-level domain should consider moving to a more secure registrar. 


EuroDNS is a Luxembourg-based domain name registrar and DNS service provider. Cointelegraph has reached out to EuroDNS for comment.Angel Drainer involved


Blockchain security firms SlowMist and CertiK reported that the attacker employed Angel Drainer phishing contracts.


SlowMist said the exploiters attacked Balancer’s website via Border Gateway Protocol hijacking — a process where hackers take control of IP addresses by corrupting internet routing tables.


The hackers then induced users to “approve” and transfer funds via the “transferFrom” function to the Balancer exploiter, it explained.


Related:Breaking: ‘All funds are at risk" — Steadefi exploited in ongoing attack


The hacker, whom SlowMist believes may be related to Russia, has already bridged some of the stolen Ether (ETH) to Bitcoin (BTC) addresses via THORChain before eventually bridging the ETH back to Ethereum, blockchain security firm SlowMist explained on Sept. 20.


SlowMist stated in an earlier post that the hacker transferred about 15 wrapped-Ether (wETH.e) on the Avalanche blockchain.Balancer Hack Update

So far, we have the following findings about the @Balancer exploiter:

1/ The attacker’s fee came from the phishing group #AngelDrainer. In other words, after the attacker (AngelDrainer) attacked the website via BGP hijacking, then induced users to… https://t.co/5g6P2aPEz8 pic.twitter.com/3PInfe9VC1— MistTrack️ (@MistTrack_io) September 20, 2023


Meanwhile, despite Balancer confirming its subdomains on “balancer.fi” to now be safe, the “Deceptive site ahead” warning still appears when attempting to access Balancer’s website.Balancer’s website as of Sept. 20 at 10:22 pm UTC. Source: Balancer.


Cointelegraph reached out to Balancer to confirm the amount of funds lost, but did not receive an immediate response.


Magazine:$3.4B of Bitcoin in a popcorn tin: The Silk Road hacker’s story# Altcoin# Phishing# Hackers# DAO# DNS# Hacks# DeFiAdd reactionAdd reactionRead moreHow to earn passive income with peer-to-peer lendingHuman vs. AI: Who is better at crypto investing?Decentralized finance needs alternatives to blockchain

News Feed

A Sea Change to Crypto Hits America, Again
A Sea Change to Crypto Hits America, Again A sea change is coming to cryptocurrency in America. It is likely to hit in two separate waves: a central bank digital currency (CBDC)
Paraguay to Become Top Bitcoin Mining Hub in Latam According to Insight Group
Paraguay to Become Top Bitcoin Mining Hub in Latam According to Insight Group Paraguay, one of the smallest countries in Latam, has the conditions needed to become the next Bitcoin
4 of the Best Meme Coins Gaining Popularity Among Influencers
Este artículo también está disponible en español. We all know how utility and credentials make or break cryptocurrencies, but is that all there is to it? A meme coin̵
Yellen Says US ‘Not Willing to Allow Contagious Bank Runs,’ Calls OPEC Oil Production Cut ‘Unconstructive’
Yellen Says US ‘Not Willing to Allow Contagious Bank Runs,’ Calls OPEC Oil Production Cut "Unconstructive" Roughly 26 days ago and in the following days, the U.S. witnessed two
Luna Foundation Bitcoin Wallet Nears Tesla’s Stash, BTC Address Is the 29th Largest Wallet Today
Luna Foundation Bitcoin Wallet Nears Tesla"s Stash, BTC Address Is the 29th Largest Wallet Today On March 26, the Luna Foundation Guard (LFG) held 24,954.95 bitcoin and during the
The CFTC Asks Court to Issue Fines in Excess of $100M Against Mastermind of a Fraudulent Crypto Scheme
The CFTC Asks Court to Issue Fines in Excess of $100M Against Mastermind of a Fraudulent Crypto Scheme The Commodity Futures Trading Commission (CFTC) has filed
Report: Saudi Government Privately Mocks Joe Biden’s Mental Acuity, Crown Prince Denies US President’s Oil Requests
Report: Saudi Government Privately Mocks Joe Biden"s Mental Acuity, Crown Prince Denies US President"s Oil Requests According to a recent report, members of the Saudi government an
Bitcoin Completes Retest Phase: Only One Thing Left For A $110,000 Price By December
Este artículo también está disponible en español. The Bitcoin price action was marked by ups and downsin the just concluded week, serving as a reminder of the volatile na
Bit2Me Debit Card Launch Gives Users up to 9% Cashback on All Purchases
Bit2Me Debit Card Launch Gives Users up to 9% Cashback on All Purchases sponsored Bit2Me, the biggest Spanish exchange, and the first company to be recognized as a virtual service p
Ripple Scores $15 Billion Valuation — CEO Says Financial Position Is Strongest Ever Despite SEC Lawsuit Over XRP
Ripple Scores $15 Billion Valuation — CEO Says Financial Position Is Strongest Ever Despite SEC Lawsuit Over XRP Ripple has bought back shares from its Series C funding round, wh
Crypto Tax Compliance Startup Taxbit Raises $100 Million, Targets International Expansion
Crypto Tax Compliance Startup Taxbit Raises $100 Million, Targets International Expansion U.S. crypto tax compliance startup Taxbit has raised $100 million in a
Swiss SIX Exchange Lists Tezos ETP With Staking Rewards
New financial products are coming to tezos (XTZ), one of a handful major proof-of-stake (PoS) blockchains up and running today. On Thursday, crypto startup Amun AG launched the Amun