火星财经消息, according to official reports, the post-incident review of the CoW Swap attack revealed that its domain cow.fi was subjected to a supply chain attack on April 14, 2026. Attackers compromised the .fi domain registration process via social engineering, hijacking DNS resolution and redirecting users who visited swap.cow.fi to a phishing site during several hours. During the incident, attackers deployed a forged transaction interface in an attempt to trick users into connecting their wallets and signing malicious transactions. The report confirmed that the attack did not affect CoW Protocol’s on-chain contracts, backend systems, or user fund security; core infrastructure and services such as AWS and Vercel were not breached. The compromise occurred during domain registration and transfer, with attackers gaining control by submitting forged identification documents and exploiting vulnerabilities in the registration process, briefly altering the domain’s DNS records. The team identified the anomaly and initiated incident response within 19 minutes, subsequently migrating to cow.finance and completing domain recovery within approximately 26 hours. The CoW team stated that affected users were primarily those who accessed the official website during the domain hijacking window, with preliminary estimated losses of around $1.2 million. The cow.fi domain has since been restored with enhanced security measures, including RegistryLock. The team has initiated third-party security audits, legal action against the attackers, and is developing potential user compensation plans. The official statement emphasized that the vulnerability has been patched and plans to improve domain infrastructure security through governance and industry collaboration.
CoW Swap Reports $1.2M Loss Following Domain Hijacking Attack
MarsBitShare
Summary
CoW Swap reported a $1.2 million loss following a domain hijacking attack on April 14, 2026. Attackers used social engineering to modify DNS records for cow.fi, redirecting users to a phishing site. A fake trading interface tricked users into signing malicious transactions. On-chain data confirmed no compromise of CoW’s smart contracts or backend systems. The team restored the domain within 26 hours, migrating to cow.finance. Altcoins to watch may include CoW tokens as the team explores user compensation and legal action.
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.