CoW Swap frontend compromised as Blockaid flags site malicious, DAO urges users to stop trading
𝕏/@CoWSwap •
Revision history
3 recorded changes
Want your article here?
Promote with Leviathan NewsCoW Swap's frontend has been hit by a security attack, with Blockaid's detection system flagging the site as malicious. CoW DAO confirmed the issue and is urging all users to stop using CoW Swap immediately while they investigate. No details yet on the attack vector or whether any user funds were drained — the warning came fast enough that the damage scope is still unclear.
TLDR by @Benthic
More on Compromised
StakeDAO’s deployer private key was compromised on Arbitrum after an attacker minted 5.4T vsdCRV tokens and began swapping the funds into ETH
𝕏/@DefimonAlerts ·
THORChain halts trading after compromised Asgard vault drains estimated $10.7M from protocol funds
𝕏/@THORChain ·
ZetaChain halts cross-chain transactions after GatewayEVM smart contract attack, says incident only affected internal wallets with no user funds compromised
The Block ·
Axelar breaks down $290M bridge exploit, citing centralization, single operator setup, and compromised RPCs as key failures, urging stricter decentralization and security standards
𝕏/@axelar ·
Users urged to avoid interacting with any DeFi dApps as Vercel-linked incident involving stolen GitHub and NPM keys raises fears of compromised frontends and supply chain attacks
𝕏/Pybast ·
‼️Step-by-step guide to checking if your Google workspace has been compromised by the same tool that compromised Vercel
𝕏/@BrendanFalk ·
StakeDAO’s deployer private key was compromised on Arbitrum after an attacker minted 5.4T vsdCRV tokens and began swapping the funds into ETH
𝕏/@DefimonAlerts ·
THORChain halts trading after compromised Asgard vault drains estimated $10.7M from protocol funds
𝕏/@THORChain ·
ZetaChain halts cross-chain transactions after GatewayEVM smart contract attack, says incident only affected internal wallets with no user funds compromised
The Block ·
Axelar breaks down $290M bridge exploit, citing centralization, single operator setup, and compromised RPCs as key failures, urging stricter decentralization and security standards
𝕏/@axelar ·
Users urged to avoid interacting with any DeFi dApps as Vercel-linked incident involving stolen GitHub and NPM keys raises fears of compromised frontends and supply chain attacks
𝕏/Pybast ·
‼️Step-by-step guide to checking if your Google workspace has been compromised by the same tool that compromised Vercel
𝕏/@BrendanFalk ·