Compound Finance Website Hijacked: Users Warned of Phishing Threat
The official website of Compound Finance, a leading lending protocol, has been compromised. The incident has prompted urgent warnings from both the project team and independent crypto sleuths.
Key points:
- Compound Finance’s official website (compound.finance) redirects to a phishing site.
- Users are strongly advised not to visit or interact with the website.
- The compound protocol and smart contracts remain unaffected.
- The team is working to resolve the issue and will provide updates.
According to reports from multiple sources, including crypto investigator Zachxbt and Compound Finance’s official channels, the project’s website has fallen victim to a sophisticated attack. Visitors to the site are currently being redirected to a newly registered phishing domain.
Also read: Pro-Crypto Donald Trump Set To Speak At Bitcoin 2024 Conference
Compound finance issues warning
The Compound Finance has issued an urgent alert through their official Xaccount. They advised users to avoid visiting the website or clicking any links associated with it until further notice.Ā Ā
Michael Lewellen, a security advisor for the protocol, provided additional clarity on the situation. He emphasized that while the website has been compromised, the compound protocol itself remains unaffected. All funds held in smart contracts are reported to be safe.
Also read: BitMEX Pleads Guilty To AML Violations
However, this is not the first time the protocol has suffered from an exploit. The protocol was the victim of a hack where its X account was compromised to promote a phishing site.
Interestingly, in October 2021, Compound Finance mistakenly distributed over $90 million in COMP tokens due to a bug in a Comptroller contract. The founder had also urged the users to return the tokens.