Attacks don’t stop at one company. Reused credentials and phishing domains make every business a target. The PayPal “Hack” That Shook Confidence In May 2025, headlines screamed that nearly 16 million PayPal accounts had been hacked. Hackers claimed to be selling a massive dataset of email and password pairs on a dark-web forum. The news rattled PayPal’s users and ... View Post
Case Study
How a DNS Hijack Exposed Web3’s Weakest Link: The Curve Finance Case Study
What Curve Finance’s 2022 DNS hijack reveals about Web3’s hidden reliance on centralized infrastructure—and how to defend against similar attacks. Case Study: Curve Finance Incident: DNS Hijack of DeFi Frontend Date: August 9, 2022 Overview Curve Finance, a decentralized exchange protocol on Ethereum known for its stablecoin AMM pools, ... View Post
DNS Hijack Hits DeFi: The PancakeSwap & C.R.E.A.M. Case Study
How a coordinated registrar exploit exposed domain vulnerabilities across two major Web3 platforms, and what it means for DNS security in crypto. Case Study: PancakeSwap & C.R.E.A.M. Finance Incident: DNS Hijacking & Phishing Redirects Date: March 15, 2021 Overview On March 15, 2021, two major DeFi platforms on Binance Smart Chain ... View Post