Decentralized finance (DeFi) platforms Velodrome and Aerodrome experienced successive front-end compromises within just three days. These attacks resulted in a significant loss of funds and a decline in the total value of assets locked (TVL) on Velodrome. The initial incident was reported on November 29, when both platforms' front-ends were compromised, leading to warnings against user interactions.
Investigations revealed the exploitation was due to a social engineering attack on their domain provider. Following a brief restoration of their original domains, the attackers struck again, causing further disruptions. Data from DeFiLlama indicated that Velodrome's TVL dropped by more than $10 million since the attack, while Aerodrome's TVL surprisingly climbed by about $5 million despite the same attack. On-chain sleuth ZachXBT identified two addresses that received around $40,000 in stolen funds from these attacks.
Disclaimer: Please note that the information provided in this article is based on the referenced research articles. It is essential to conduct further research and analysis before making any investment decisions. The cryptocurrency market is highly volatile, and investors should exercise caution and consult with financial professionals before engaging in cryptocurrency trading or investment activities.
