The attacker took control of the DNS server of the Convex Finance DeFi protocol to ask users to approve malicious smart contracts. The project team clarifies possible damage.

The investigation is still ongoing, but a quick update for the community:
— DNS compromised for https://t.co/5rSUjMgY4u and users were asked to approve malicious contracts for some interactions on the site.
— Funds in verified contracts are not affected.

— Convex Finance (@ConvexFinance) 23 June 2022

The developers stressed that funds in verified contracts are not affected. However, at least five addresses interacted with the malware. The team urged the owners to get in touch.

At the time of writing this article, the investigation into the incident is ongoing. Convex Finance promised to release detailed information later.

The price of the CVX project token did not react to the event. In the last 24 hours, the price of the asset has increased by 2% (CoinGecko). CVX is trading near $4.6, 92% below the January 2022 high of $60.

Recall that in April the Convex Finance team patched a security vulnerability that potentially threatened $15 billion in losses. The bug was spotted by OpenZeppelin experts.

Read ForkLog bitcoin news in our Telegram – cryptocurrency news, courses and analysis.