On November 22, major decentralized exchanges Aerodrome and Velodrome, operating on second-layer blockchain networks, Ethereum, were subjected to a hacker attack.
Representatives of the trading platforms reported that attackers had successfully hacked the frontend of their centralized domains and hijacked DNS to redirect requests to the criminals’ server, apparently to steal personal data. To avoid problems, clients of the platforms were asked to use decentralized mirrors until the situation was resolved.
At the time of writing on Sunday morning, Velodrome’s centralized website was down, while Aerodrome’s website was operational. However, the projects’ staff hasn’t released any new information, so it’s best to refrain from using the portals for now. However, according to Coinmarketcap data, some people continued to trade on the platforms through centralized domains, with trading volume over the past 24 hours reaching $48,107 on Velodrome and $19,2 million on Aerodrome.
Aerodrome and Velodrome statistics
In November 2023, the frontends of both DEXs were similarly compromised, and BlockDetective ZachXBT estimated the traders’ losses at over $100,000. The detective then blamed the hack on the domain registration service Porkbun and accused its employees of incompetence because they had fallen victim to social engineering attacks twice in one week.