Crypto News – Ether.fi’s Swift Response Ensures User Funds Remain Safe
Crypto News – Ether.fi, a decentralized finance (DeFi) staking protocol, announced that no user funds were compromised during a recent attempted domain takeover. The attack, which occurred on September 24, targeted their domain registrar, Gandi.net, but was successfully thwarted before any significant harm could occur.
Details of the Attack
The attempted breach started when Ether.fi received a recovery notification email from Gandi.net at 4:38 PM UTC. Upon further investigation, the Ether.fi team confirmed that the email was indeed sent by an attacker attempting to exploit the legitimate Gandi recovery process to gain unauthorized access to Ether.fi’s Gandi account.
The official Ether.fi summary on Gitbook stated, “it was established that an attacker attempted to use the legitimate Gandi recovery flow to gain access to Ether.fi’s Gandi account.” The protocol took immediate action by contacting Gandi through multiple channels to secure their account.
Swift Response and Security Measures
By 7:30 PM UTC, Ether.fi had confirmed that their account was locked down, preventing any further tampering. The protocol had previously implemented several security upgrades as a precautionary measure. These upgrades acted as a buffer against potential threats associated with domain takeover attempts.
Weeks before the incident, Ether.fi observed an increase in similar exploitations across various platforms. As a proactive measure, the protocol had upgraded its key platforms to require hardware authentication for account recovery and management procedures. Ether.fi acknowledged its security partners, including Seal911, Doppel, Ethena, and Distrust, for their immediate assistance during the attack.
User Communication and Safety Protocols
At 07:13 PM UTC on the same day, Ether.fi took to social media platform X (formerly Twitter) to inform users not to click on any links or interact with their domain. They emphasized that all official communications would be conducted solely through X or Discord, explicitly stating that no communications would be sent via email.
Following the resolution of the incident, the Ether.fi team reassured users that “all funds are safe” and that the attackers had “no opportunity” to deploy any malicious decentralized applications (DApps) on any Ether.fi-related domain.
FAQ: Ether.fi Domain Takeover Attempt
What happened to Ether.fi on September 24?
On September 24, 2023, Ether.fi experienced an attempted domain account takeover involving their domain registrar, Gandi.net. However, the attack was thwarted before significant harm could occur, and no user funds were compromised.
Were any user funds affected during the attack?
No, Ether.fi confirmed that no user funds were compromised during the attempted domain takeover. The protocol took immediate action to secure its accounts.
Leave a comment