On May 12, 2025, hackers seized control of Curve Finance's DNS, redirecting users to a fake site to steal funds. This was the second attack in a week, targeting the DNS layer without breaching smart contracts. DNS hijacking alters how users connect to websites, leading them to malicious pages. Curve Finance had faced a similar attack in 2022, losing funds to cloned websites. Attackers exploit DNS vulnerabilities to reroute users to fake sites. The recent attack on Curve Finance involved altering DNS records at the registrar level. While the backend remained secure, users lost funds through the compromised frontend. This incident highlights the vulnerability of DeFi platforms to DNS hijacking. To enhance security, projects should consider decentralized web infrastructure like IPFS and ENS. Bridging the gap between decentralized protocols and centralized interfaces is crucial for safeguarding DeFi platforms. Read more AI-generated news on: https://app.chaingpt.org/news