Ace quick missions & earn crypto rewards while gaining real-world Web3 skills. Participate Now ! 🔥
Curve Finance: Curve.fi Redirects to Fake Site in New DNS Attack Scare
Last Updated: May 13, 2025
✓ Fact Checked
Key Takeaways
- Curve Finance warned users that curve.fi may redirect to a fake site designed to steal funds due to a DNS issue;
- The team confirmed smart contracts remain safe and account security is intact, with no sign of a system breach;
- This follows a May 5 incident where Curve’s X account was hijacked, though no users lost funds in that case.
Curve Finance, a decentralized finance (DeFi) protocol, has issued a warning that its website, curve.fi, does not point to the correct IP address and may redirect users to a fake site meant to steal funds.
In a May 12 post on X, they told users not to interact with the website. They said the problem is with the Domain Name System (DNS), which links website names to their actual online addresses.
In a separate post on X, Curve Finance's team reassured users that the password is safe and two-factor login has been active for some time.
Did you know?
Want to get smarter & wealthier with crypto?
Subscribe - We publish new crypto explainer videos every week!
How to Learn Crypto The Easy Way? (Trending Beginners' Strategy)
Even though Curve Finance's smart contracts are still safe, using the fake version of the site could lead to stolen assets. The team said they are working to get full control back and emphasized that there is no sign that their systems have been breached.
Blockchain security firm Blockaid stated in a post on X that the incident could be a "frontend attack", where attackers change what users see and click on to trick them into revealing private information or signing harmful transactions.
This is the second security issue Curve Finance has faced. On May 5, someone took over Curve Finance’s X account and posted phishing links. However, the team quickly regained control and confirmed that no other systems were affected. In a follow-up post on May 6, they said no funds were lost and no users were tricked by the fake links.
On May 11, the Discord server of Ledger, a cryptocurrency hardware wallet provider, was compromised and used to spread a phishing link. How? Read the full story.
Loading...
The Most Liked Crypto News Findings
Looking for more latest crypto news on related topic? We have gathered similar news articles for you to spare your time. Take a look!
Latest Crypto News & Videos
×
Verified
