Fun

Ether.fi thwarts domain account takeover attempt, confirms user funds safe

News Feed - 2024-09-25 08:09:53

Josh O"Sullivan7 hours agoEther.fi thwarts domain account takeover attempt, confirms user funds safeEther.fi credits security upgrades and partners for thwarting a domain account takeover before user funds were compromised.1650 Total views3 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTCOINTELEGRAPH IN YOUR SOCIAL FEEDFollow ourSubscribe onEther.fi, a decentralized finance (DeFi) staking protocol, has reported that no user funds were compromised during the recent domain takeover attack.


On Sept. 24, the DeFi protocol faced an attempted domain account takeover involving their domain registrar, Gandi.net, but was stopped before significant harm could occur.


The Ether.fi internal team confirmed that attackers could not present a malicious decentralized application (DApp) on any Ether.fi-related domain.Source:Ether.fi


Related:Ether.fi launching ‘crypto-native’ credit card on ZK-rollup ScrollEther.fi responds to attack


The breach began on Sept. 24 when the DeFi protocol received a recovery notification email from Gandi.net at 4:38 pm UTC.


After verification through the protocol’s security measures, including “SPF, DKIM, and DMARC authentication records,” it was discovered that the attacker was behind the email.


According to an official Ether.fi summary Gitbook post, “it was established an attacker attempted to use the legitimate Gandi recovery flow to gain access to etherfi’s Gandi account.”


Ether.fi immediately contacted Gandi across multiple platforms, and by 7:30 pm UTC, the DeFi staking protocol had confirmed that its account had been locked down to prevent further tampering.


Related:Restaking is ‘inevitable,’ but the risks are still uncertain — Ether.fi CEOSecurity measures


The DeFi protocol implemented security upgrades before the attempted attack, which acted as a buffer to mitigate the threat of the domain takeover attempt.


According to the official Gitbook post weeks prior, Ether.fi noticed an increase in the exploitation of similar attack vectors across other platforms. 


As a precaution, the protocol upgrades its key platforms to require hardware authentication for account recovery and management procedures.


Ether.fi credited its security partners, including Seal911, Doppel, Ethena, and Distrust, for immediate assistance during the attack.


Related:Omni Network seals $600M deal with Ether.FiFollow-up communication and fund safety


On Sept. 24 at 07:13 pm UTC, Ether.fi communicated to its users via social media platform X that they should not “click on any links” or interact with their domain.


The DeFi protocol noted that official communications would come solely through X or Discord and explicitly stated that no communication would come through email.


After resolving the incident, the team stated that “all funds are safe” and that the attackers had “no opportunity” to issue any malicious DApps “on any ether.fi related domain.”


Magazine:Lady of Crypto will be ‘all out of crypto’ by September 2025: X Hall of Flame# Blockchain# Security# Decentralization# Ethereum# Hackers# Cybersecurity# Hacks# DeFiAdd reaction

News Feed

Rakesh Upadhyay2 hours agoPrice analysis 7/1: BTC, ETH, BNB, XRP, ADA, DOGE, SOL, LTC, MATIC, DOTThe rejection of ETF applications by the SEC caused a knee-jerk reaction but the shallow fall in Bitcoin and several altcoi
The Search for Satoshi Nakamoto: A Look at 7 Suspected Bitcoin Creators
The Search for Satoshi Nakamoto: A Look at 7 Suspected Bitcoin CreatorsDuring the last decade, cryptocurrency enthusiasts have discussed the true identity of Bitcoin’s creator
Venezuelan Army Starts Mining Bitcoin for ‘Unblockable Income’
Venezuelan Army Starts Mining Bitcoin for "Unblockable Income" The Venezuelan Army has inaugurated a cryptocurrency mining center with bitcoin mining equipment a
Ana Paula Pereira7 hours agoEU blockchain sandbox unveils first 20 use cases after wave of applicationsAccording to the European Commission, 20 projects have been selected in the first cohort to receive legal advice and
Polkadot (DOT) Prints Classic Bullish Falling Wedge – Big Breakout Imminent
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Nissan launches metaverse experience blending car history with driver education
Tristan Greene4 hours agoNissan launches metaverse experience blending car history with driver educationThe new experience is available on VRChat for Meta Quest.907 Total views6 Total sharesListen to article 0:00NewsOwn
Brayden Lindrea6 hours agoControversy as MakerDAO’s Spark Protocol blocks users with VPNsUsers attempting to access Spark Protocol with a virtual private network will not be able to, sparking criticism from supporters
Alchemy Pay and Binance Partner to Drive Binance Pay Merchant Integration
Alchemy Pay and Binance Partner to Drive Binance Pay Merchant Integration press release PRESS RELEASE. Singapore, August 3, 2021 –Binance, the world’s
Wharton Professor Urges the Fed to ‘Bite the Bullet’ and Defend the US Dollar — Warns About Bitcoin Taking Over
Wharton Professor Urges the Fed to "Bite the Bullet" and Defend the US Dollar — Warns About Bitcoin Taking Over A finance professor at the Wharton School of the University of Pen
Paypal’s Crypto Embrace: Morgan Stanley Says Move Boon for Mass Adoption, Critics Say Payment Giant Violates Crypto Principles
Paypal"s Crypto Embrace: Morgan Stanley Says Move Boon for Mass Adoption, Critics Say Payment Giant Violates Crypto Principles The entry of Paypal into the crypt
Crypto custody firm Bakkt faces delisting if shares stay under $1
Jesse Coghlan9 hours agoCrypto custody firm Bakkt faces delisting if shares stay under $1Bakkt has posted back-to-back losses and a plummeting share price since listing in October 2021 and the NYSE is threatening to pull
Coinbase expands crypto services to Hawaii
Josh O"Sullivan8 hours agoCoinbase expands crypto services to HawaiiHawaii residents can gain access to the Coinbase platform, including crypto staking options, following recent regulatory changes.4534 Total views6 Total