The website and Twitter accounts belonging to the Curve Finance defi projects were compromised in quick succession. On May 5, an attacker compromised the Twitter account belonging to the project, posting a scam in which they appeared to announce an <button class="define-target" id="airdrop">airdrop</button>.<p>Then, on May 12, the project posted a warning that the website for the Curve frontend was "hijacked" in an apparent domain takeover.</p><p>This is not the first such compromise for Curve, which suffered a <a href="https://www.web3isgoinggreat.com/?id=curve-finance-frontend-compromised" target="_blank">frontend compromise in August 2022</a> that resulted in $620,000 in losses (later recovered with the help of some exchanges).</p>

Archived tweet

Tweet by Curve Finance: