Ethereum News Update: Major DEX Compromised as Centralized DNS Vulnerability Threatens DeFi Security

Bitget App

Trade smarter

Bitget

News

Markets

Ethereum News Update: Major DEX Compromised as Centralized DNS Vulnerability Threatens DeFi Security

Bitget-RWA2025/11/22 19:08

By:Bitget-RWA

- Aerodrome and Velodrome DEXs suffered DNS hijacking attacks, redirecting users to phishing sites via centralized domain vulnerabilities. - Attackers exploited compromised domains to trick users into signing malicious transactions, mirroring a 2023 incident that caused $300,000+ losses. - Platforms urged users to revoke token approvals and use ENS mirrors, emphasizing secure smart contracts but highlighting DeFi's front-end risks. - The breach occurred days after Aerodrome's planned merger with Velodrome,

Aerodrome Finance, recognized as the top decentralized exchange (DEX) on

Ethereum

Layer 2 network Base, along with Velodrome, its equivalent on

Optimism

experienced a front-end security breach

early Saturday. This led to urgent advisories for users to avoid the official websites and instead use decentralized mirror sites. The breach,

believed to be caused by a DNS hijacking

, enabled attackers to redirect visitors to phishing pages crafted to deceive users into approving harmful transactions. Both exchanges stressed that their core smart contracts were unaffected, but users were urged to revoke any recent token permissions and steer clear of suspicious domains

as outlined in the report

This incident is reminiscent of a similar attack in late 2023, when the front-ends of Aerodrome and Velodrome were also compromised,

leading to user losses exceeding $300,000

. The most recent compromise happened just after Aerodrome

revealed its intention to merge with Velodrome

under a unified "Aero" ecosystem, aiming to pool liquidity across both Base and Optimism. Despite the incident, the value of the AERO token

remained steady

, trading near $0.67, marking a 2% rise in the last 24 hours.

Ethereum News Update: Major DEX Compromised as Centralized DNS Vulnerability Threatens DeFi Security image 0

The DNS hijack took advantage of weaknesses in centralized domain registrars, sending users to fake sites that closely resembled the DEXs' original interfaces.

Impacted users described misleading pop-ups

, such as innocent-looking signature requests followed by aggressive prompts to approve NFTs, ETH, and stablecoins. The Aerodrome team

identified the breach

after noticing suspicious domain activity and quickly disabled access to affected domains like aerodrome.finance and aerodrome.box,

advising users to utilize ENS-based mirrors

such as aero.drome.eth.limo. Velodrome issued similar guidance, urging users to avoid centralized domains and use decentralized options

as stated in the report

This event underscores persistent threats in decentralized finance (DeFi), where vulnerabilities in front-end infrastructure—unlike on-chain smart contract exploits—can be targeted without breaching the protocol itself.

Both Aerodrome and Velodrome reassured

that their liquidity pools and protocol reserves were unaffected. Nevertheless, the breach highlights the necessity for stronger domain security, especially for projects dependent on centralized DNS providers.

Aerodrome’s team is currently working with its domain provider, My.box, to investigate the incident and

has called for immediate support

to address the problem. The DEX also

suggested using tools like Revoke.cash

so users can remove recent token permissions and reduce the risk from any lingering malicious access.

The coordinated nature of this attack raises alarms about broader weaknesses in domain management, suggesting that other DeFi platforms could face similar risks. As the sector continues to move toward decentralization, dependence on centralized DNS remains a major concern.

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Earn new token airdrops

Lock your assets and earn 10%+ APR

Lock now!

- 2025 altcoin market highlights Bitcoin Munari (BTCM), XRP Tundra, and Mutuum Finance (MUTM) leveraging multi-chain infrastructure and structured presales. - BTCM's fixed-supply model ($0.35 presale) and Solana-based SPL token deployment aim for 2027 Layer-1 migration with EVM compatibility and privacy features. - XRP Tundra offers cross-chain yield via dual-token system (TUNDRA-S/X) with $0.214 Phase 12 pricing and audited Cryo Vaults for Bitcoin holders. - Mutuum Finance (MUTM) nears 99% Phase 6 allocat

Bitget-RWA•2025/11/22 19:26

Bitcoin News Update: Innovative Tokenomics and Interoperable Cross-Chain Features: The Key to Altcoin Success in 2025

Bitcoin Updates: Institutional Funds Move: AI ETFs Gain Momentum Amid Growing Crypto Debt Issues

- Bitcoin and Solana face renewed selling pressure as digital asset treasury companies (DATCos) offload holdings amid $42.7B corporate debt inflows into crypto. - DATCos, underwater on $126K Bitcoin peak investments, approach parity in market-to-net-asset-value ratios, triggering 40% Solana treasury value declines since October. - Institutional capital shifts toward AI ETFs (e.g., Global X AI ETF) as firms prioritize AI infrastructure investments over crypto, linking performance to tech stock volatility. -

Bitget-RWA•2025/11/22 19:26

Bitcoin Updates: Institutional Funds Move: AI ETFs Gain Momentum Amid Growing Crypto Debt Issues

Fed Policy Split Drives Derivatives Activity as Crypto Teeters on Brink of Easing

- Fed policy uncertainty drives derivatives bets, with CME FedWatch pricing 69.7% chance of 25-bp December rate cut amid mixed inflation and labor data. - Crypto markets anticipate easing cycle, but remain fragile as Crypto Fear & Greed Index hits "extreme fear" level 14 despite Coinbase's bearish odds assessment. - Crude oil drops on U.S. Ukraine peace plan and OPEC output hike, while dollar strength compounds risks for rate-cut-sensitive commodities. - CME Group faces scrutiny after $2M insider sale, yet

Bitget-RWA•2025/11/22 19:26

Fed Policy Split Drives Derivatives Activity as Crypto Teeters on Brink of Easing

Modern Monetary Theory and the Valuation of Cryptocurrencies: Do MMT Principles Support Rapid Increases in Token Prices?

- 2025 analysis explores whether Modern Monetary Theory (MMT) can justify Momentum (MMT) token's 1,300% price surge. - Token's rise stems from Binance airdrops, U.S./EU regulatory clarity, and institutional investment, not MMT principles. - Academic research highlights crypto valuation duality: network effects coexist with speculative behavior driven by heterogeneous expectations. - MMT influences macroeconomic frameworks (CBDCs, fiscal policy) but fails to predict token-specific surges dominated by retail

Bitget-RWA•2025/11/22 19:24