Top DEXs Aerodrome, Velodrome hit with front-end compromise, urge users to avoid main domains
Top DEXs Aerodrome and Velodrome experienced a front-end compromise via DNS hijack, advising users to use decentralized mirrors while contracts remain secure.Summary
Aerodrome, the leading DEX on Base, and Velodrome, the top DEX on Optimism, were both subjected to a front-end compromise early Saturday morning (ET), likely due to a DNS hijack of their centralized domains. The projects immediately advised users to avoid their main websites and instead use decentralized mirrors to access the platforms. They assured users that the underlying smart contracts for both DEXs remain secure, as a DNS hijack typically only redirects users to fraudulent websites. Although the fraudulent site was accessible briefly, it stopped loading later that afternoon, suggesting remediation efforts were underway. This incident is notable as it follows a similar attack nearly two years prior that affected both platforms. Dromos Labs, the organization behind both protocols, is currently working towards unifying them into a single platform called "Aero" by Q2 2026.
(Source:The Block)