Balancer Hack Traced to DNS Social Engineering Attack
- Balancer attributed blame to its DNS service provider.
- Efforts are underway to explore other domain options.
- The majority of DeFi exploits have occurred on the Ethereum blockchain.
Decentralized finance (DeFi) has democratized access to financial services, allowing anyone to lend, borrow, and invest without intermediaries. The cost of this is that the sector has been plagued with periodic high-profile hacks by those targeting vulnerabilities within the chain of processes.
Typically, DeFi attackers exploit smart contract vulnerabilities or weaknesses within the protocol itself. Yet, the most recent Balancer hack was traced to a socially engineered attack at the protocol’s domain name service (DNS) provider.
Balancer Now Safe to Use
In an update to the community on Wednesday’s DNS attack , Ethereum-based Balancer confirmed that it has regained control of its domain name and assured users that all associated subdomains are now safe to use.
Balancer’s investigations concluded that hackers had infiltrated EuroDNS, the company entrusted with managing Balancer’s DNS registry, using social engineering techniques. This exploit involves manipulating unsuspecting individuals into exposing data, spreading malware, or giving away system access.
Acting on its findings, Balancer stated that it is looking at more secure top-level domains (TLD) to drop its existing .fi setup. The team also suggested that other DeFi projects follow suit.
With Balancer responding swiftly to restore services, thoughts now turn to understanding how the breach occurred and preventing future attacks from happening again.
What Happened?
On September 19, Balancer advised users not to interact with its interface after discovering a breach. Further analysis revealed hackers had hijacked the Balancer domain, enabling the deployment of a malicious program that set about draining victims’ wallets.
Although Balancer did not officially comment on the losses incurred, Peckshield estimated around $238,000 worth of crypto assets were stolen in the incident. The attack represents the second security breach for Balancer in a month. In August, the protocol suffered a spate of flash loan exploits , netting hackers just under $1 million in DAI.
On the Flipside
- Cloudflare reported that 87% of companies suffered a DNS attack in 2021.
- Of the 148 DeFi exploits to date, 71 occurred on Ethereum-based protocols.
Why This Matters
The latest Balancer hack highlights the heavy dependency of DeFi protocols on legacy infrastructure not designed for crypto’s complexities. Realizing the vision of DeFi as the future of finance would require reimagining the internet’s foundational structure.
Get a breakdown of what happened during the Balancer hack here:
Balancer Protocol Loses $238K in Crypto in Ongoing DNS Attack
Discover more about Nigerians turning to crypto amid the country’s ongoing economic woes:
Nigeria Turns to Crypto as Currency Crisis Deepens
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Bitcoin drops below $100,000 after Fed Chair Powell’s comment against BTC reserve
Bitcoin fell below the $100,000 mark on Wednesday following Federal Reserve chair Jerome Powell’s comments.Powell spoke against the idea of a U.S. national bitcoin reserve, while giving a hawkish 2025 outlook.
World Liberty Financial and Ethena Labs Partnership Boosts sUSDe Stablecoin Usage in DeFi
BlackRock Surpasses 1 Million ETH in ETF, Boosting Confidence in Ethereum
Bitwise CIO Matt Hougan Says Ethereum To Outpace Solana in 2025, Here’s Why