Gate News message, April 15 — CoW Swap suspended its protocol yesterday (April 14) after attackers hijacked the DNS records of swap.cow.fi at 14:54 UTC, redirecting users to a malicious frontend that drained at least $1 million in crypto assets within three hours. Cow DAO issued a public warning at 15:41 UTC and confirmed the DNS compromise at 16:24 UTC.
On-chain data shows the attack intercepted at least $1 million, including 219 ETH from a single wallet. The exploit targeted the domain at the registrar level, cloning the interface to trick users into approving wallet-draining transactions. Smart contracts and backend systems were not compromised, but the protocol remained offline as a precaution.
Cow DAO instructed affected users at 16:33 UTC to revoke token approvals via revoke.cash. Security firm Blockaid flagged the malicious domains during the incident. CoW Swap, part of the Gnosis ecosystem, uses batch auctions and Coincidence of Wants matching to process trades. No timeline for service restoration has been announced.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
California man Marlon Ferro was sentenced to 78 months for stealing cold wallets worth $250 million
According to an official statement released by the U.S. Department of Justice (DOJ) on May 7, 20-year-old California man Marlon Ferro was sentenced by a federal court to 78 months in prison for his involvement in a nationwide crypto asset social engineering scam, along with 3 years of supervised release and $2.5 million in restitution. The DOJ statement said the criminal group stole more than $250 million worth of crypto assets from multiple victims.
MarketWhisper15m ago
1inch market maker TrustedVolumes was attacked, with losses of up to $5.87 million
Blockchain security company Blockaid posted on X at 5:00 a.m. Eastern Time on May 6 in the US, disclosing that the decentralized exchange aggregator 1inch’s liquidity provider and market maker TrustedVolumes is facing a sustained attack; as of the time Blockaid’s statement was released, losses have already reached about $5.87 million.
MarketWhisper31m ago
Aave liquidates the Kelp DAO attacker’s positions, and the Arbitrum vote approves unfreezing rsETH
According to Aave’s May 7 announcement, the Arbitrum DAO voting to unlock ETH related to the April 18 rsETH incident has reached the quorum, with over 1,600 addresses, receiving unanimous support from the community. On the same day, Aave, following its established governance procedures, completed the liquidation of the remaining rsETH positions in the Aave protocol held by the attacker of Kelp DAO.
MarketWhisper48m ago
1inch Liquidity Provider TrustedVolumes Under Attack on Ethereum, $5.87M Stolen
According to Blockaid, the 1inch market maker and resolver TrustedVolumes is under attack on Ethereum as of May 7. The vulnerability was detected in Blockaid's security monitoring system within a custom RFQ trading agent contract controlled by TrustedVolumes. Attackers have extracted
GateNews2h ago
Project Eleven Warning: 6.90 million BTC face a quantum threat, with Q-Day earliest in 2030
In the post-quantum security space, the startup Project Eleven published a report on May 6, warning that the earliest possible arrival of the quantum computers surpassing the critical point of modern cryptography (Q-Day) may be as early as 2030, with a probability exceeding 50% for occurrence by 2033. The report also estimates that, under certain conditions, around 6.9 million bitcoins face potential quantum attack risk, and it calls on the cryptocurrency ecosystem to accelerate the anti-quantum migration process.
MarketWhisper2h ago
Project Eleven Warns Q-Day Could Arrive as Early as 2030
Project Eleven published a report on Wednesday proposing that the inflection point of quantum computers breaking modern encryption, often referred to as "Q-Day," could come as early as 2030, with a breakthrough described as "more likely than not" by 2033. The startup, focused on post-quantum securit
CryptoFrontier3h ago
