PANews reported on April 16th that CoW Swap announced on its X platform that it has regained control of the cow.fi domain and that it has been operating normally on cow.finance for some time. It is currently gradually transitioning back to the original domain. On April 14th, attackers gained control of the cow.fi domain by forging documents and deceiving the DNS registrar . The attackers deployed a highly realistic phishing website, implementing the attack in two phases: first, they induced users to sign malicious transactions using a wallet stealer; then, they stole mnemonic phrases and passwords through fake wallet pop-ups. This attack targeted the domain registrar and was not related to CoW Swap's own infrastructure or a private key leak. Affected users should use tools such as Revoke.cash to revoke all authorizations and consider transferring funds to a new wallet.
CoW Swap: The previous attack targeted the domain registrar rather than the private key leak; control of the cow.fi domain has been regained.
Share to:
Author: PA一线
This content is for market information only and is not investment advice.
Follow PANews official accounts, navigate bull and bear markets together
Recommended Reading
PANews App
24/7 blockchain news tracking and in-depth analysis.
