In a recent cybersecurity incident, a major breach at Squarespace, a popular SaaS provider for many Web3 platforms, has left over 120 crypto projects vulnerable to potential attacks. The breach, initially detected by users, has raised significant concerns within the decentralized finance (DeFi) community.
The attack came to light when users of Compound, a prominent DeFi platform, reported being redirected to a malicious website hosting a token-draining application. Similarly, Celer Network thwarted an attempted domain takeover, highlighting the severity of the breach.
According to investigations by Blockaid, the attacker appears to be targeting domain names managed through Squarespace, posing a serious risk to any DeFi application utilizing Squarespace’s domain services. This includes platforms like Pendle Finance, DYDX Exchange, and Mendi Finance, which have been specifically flagged for potential vulnerabilities.
Furthermore, Polymarket, a decentralized prediction marketplace, also faces exposure due to its reliance on Squarespace infrastructure. The breach has prompted MetaMask, a widely used Ethereum wallet and gateway to decentralized applications (dApps), to issue warnings to its users regarding potentially compromised applications.
MetaMask cautioned in response to the incident that for those using MetaMask, they would receive a warning from Blockaid when attempting transactions on sites affected by that breach.
Metallica’s X Account Hacked: False Claims of Ticketmaster PartnershipSecurity researchers, as reported by Crypto Briefing, suspect that the attackers employed tactics such as pre-registration of domains or mass sign-ups to execute their malicious activities. This sophisticated approach underscores the evolving threats faced by the blockchain ecosystem, where security and resilience against cyber threats are paramount.
In response to inquiries, Squarespace has yet to provide detailed comments on the breach or its impact on affected clients. The company’s handling of the situation and its cooperation with affected crypto projects will likely be closely monitored in the coming days as the community assesses the fallout from this significant security incident.