BlockBeats News, April 16: CoW Swap announced that it has regained control of the cow.fi domain name. The platform has been operating under cow.finance for some time and is now gradually transitioning back to the original domain.
The official statement noted that on April 14, an attacker deceived the DNS registrar with a fake document to take control of the cow.fi domain. The attacker then deployed a highly realistic phishing website in two stages: first, inducing users to sign a malicious transaction through a wallet doppelgänger, and later stealing mnemonic phrases and passwords through a fake wallet popup. This attack targeted the domain registrar and was not a result of any compromise of CoW Swap’s own infrastructure or private keys. Affected users are advised to use tools like Revoke.cash to revoke all authorizations and consider transferring their funds to a new wallet.
