CoW Swap domain locked after frontend compromise; team launches temporary UI and urges caution
first published 2026-04-14T17:35:15Z
Blockaid flagged CoW Swap’s main frontend (cow.fi) as malicious after a suspected frontend/DNS hijack. Users were advised not to sign transactions or interact with the dApp and to immediately revoke token approvals. The incident is part of a broader surge in DeFi frontend/DNS attacks that target user devices and prompts even when on‑chain contracts appear uncompromised; basic security hygiene is recommended.
AI Analysis
Blockaid identified cow.fi as malicious and advised users to avoid signing transactions; community members urged immediate revocation of token approvals. The issue is a frontend/DNS hijack (user-facing risk) while on‑chain contracts remain uncompromised, so it creates immediate user-level sell/withdraw pressure but not a protocol-level insolvency.
Expected Investor Sentiment: Bearish
Potential Market Impact: High
Source Articles
- CoW Swap users warned after Blockaid flags COW.FI frontend attack - Crypto News
- Popular DeFi platform warns users to stay away from its site after security breach - CoinDesk
- Cow Protocol Halts Trading After Frontend Domain Hijack - Bitcoin.com
- DAO behind CoW Swap urges users to stay off platform after ‘hijacking‘ - Cointelegraph
- Fake Ledger App on Apple Store Stole $9.5 Million in One Week - Crypto News
- Ethereum DeFi Exchange CoW Swap Pauses Protocol Following Website Compromise - Decrypt
- CoW Swap Domain Locked Due to Security Issue: CoW Swap - The Defiant
- Apple removes fake Ledger app that stole $9.5M from crypto investors - Cointelegraph
- Crypto users targeted in ‘elaborate’ scam using popular notes app - Cointelegraph
- North Korean hackers used AI-enabled social engineering in Zerion attack - Cointelegraph
- New malware scam targets crypto users through Obsidian notes app - Crypto News
