The Compound Finance website has apparently fallen victim to a hijacking incident, according to crypto investigator ZachXBT.
In a recent post on Telegram, ZachXBT informed the community about the compromised website, advising users to steer clear of it due to potential security risks.
The investigator revealed that the website has been redirecting users to a recently registered phishing site, raising concerns about the safety of personal data and funds.
Confirming the breach, a member of the Compound Finance team encouraged users to avoid interacting with the compromised website.
Michael Lewellen, a security adviser at the Compound Finance DAO, disclosed that the URL had been compromised and was currently hosting a phishing platform.
Lewellen cautioned users against engaging with the site but assured them that the protocol itself remained unaffected, with funds secured by the smart contracts.
ALERT: The https://t.co/vSAGYl6wwJ URL has been compromised and is currently hosting a phishing site. DO NOT interact with the https://t.co/vSAGYl6wwJ website until further notice.
The Compound protocol itself is not impacted and all smart contract funds are safe.
— Michael Lewellen (@LewellenMichael) July 11, 2024
Notably, this is not the first time Compound Finance has encountered such security breaches.
In 2023, the decentralized finance (DeFi) protocol’s official account, known as X, was hijacked by hackers who exploited the company’s social media platform to promote a phishing website.
The compromised account posted an advertisement offering free crypto tokens and directed users to click on a link that impersonated the official site.
However, the scam was swiftly identified and flagged by vigilant users.
Cybersecurity blogger Officer’s
Read more on cryptonews.com