Blowfish financing temporarily suspends smart contracts according to domain and social media compromise.
Alisa Davidson
Post: August 21, 2025 3: 3 update: August 21, 2025, 3: 4 am on August 21, 2025
Edit and fact confirmation: August 21, 2025 3: 3 am
simply
Fowphone financing temporarily suspended smart contracts after the domain and social media violations, ensuring that funds are safe while the investigation continues.
Amir Forouzani, co -founder of the Liquid Restaking Protocol Puffer Finance, expects the project to be temporarily suspended and will soon be activated as a potential security event.
According to a statement published before social media platform X, Amir forouzani confirmed that the platform was faced with a domain -related issue and advised users to refrain from interaction with social media channels during the problem.
At the same time, the blockchain security company confirmed that SlowMist and PeckShield have damaged the official website of Puffer Finance (Puffer (.) Fi) and social media channels. Meanwhile, according to media reports, attackers have intercepted the domain and social media accounts of the project between August 10 and August 17.
But after a while, Amir forouzani provided information that all funds were safe. The X Post explained that the smart contract has been suspended in a purely preventive stage and will soon be reactivated.
Despite the restoration of operational control, the specific details of how violations occurred were not disclosed through theft, administrative mistakes, or intentional target attacks. It is not clear whether the platform has undergone deeper results.
This incident led to the idea that Puffer Finance would publish more comprehensive reports on more explanations and violations of the future. Users and observers pay attention to potential updates, but the warning report has not been displayed so far, so it is likely that the user has not faced a direct problem.
DNS kidnapping is targeted at the Defi platform that emphasizes security risks.
The domain name system (DNS) is an essential element of the Internet that functions in a similar way to the phone directory. It is necessary to convert a simple and recognized domain name such as Facebook.com to a number IP address like 192.168.1.1, so that the device is connected. This conversion process allows users to access the website by using a name that is easy to remember without relying on complex numeric sequences. When the user enters the web address in the browser, the device is connected to the intended website because the device contacts the DNS server and obtains the related IP address.
In the case of DNS kidnapping, the process is reduced to a fraud website without knowing the redirect because it is interrupted by malicious actors by changing the way the DNS query is resolved. The attacker can achieve this by exploiting the weaknesses of the DNS server, damaging the router, or accessing the account with the dominant registra. The main goal is to manipulate the DNS records to be redirected to an imitation platform designed to unknown harmful code such as wallet infection scripts, unconsciously to access legal websites.
If the website is damaged through the DNS kidnapper, you can capture sensitive data or assets to route traffic on malicious platforms without knowledge of users who can really appear.
The domain kidnapping continues to cause significant threats in the Cryptocurrency sector, and the use of various distributed financial (Defi) platforms, especially the .fi domain, aims to attack the front end of these characteristics.
On May 12, 2025, Curve Finance experienced such an event when the .fi domain was kidnapped at the registra level. As a result, the user has been redirected as a phishing site designed to drain the wallet. The backend smart contract was not affected, but the front end interface was corrupted. As a result, Curve Finance instructed the user to curve.finance and began requesting a suspension of the post on a malicious domain and investigated distributed hosting solutions such as ENS or IPF while strengthening registrar levels.
Another example occurred on September 24, 2024 when Ether.fi was subject to the acquisition of a domain account through the registra gandi.net. These attempts have failed to include preemptive measures including hardware certification recovery system and cooperation with security experts without financial influence on violations.
disclaimer
The trust project guidelines are not intended and should not be interpreted as advice in law, tax, investment, finance or other forms. If you have any doubt, it is important to invest in what you can lose and seek independent financial advice. For more information, please refer to the Terms and Conditions and the Help and Support Pages provided by the publisher or advertiser. Metaversepost is doing its best to accurately and unbiased reports, but market conditions can be changed without notice.
About the author
Alisa, a dedicated reporter for MPOST, specializes in the vast areas of Cryptocurrency, Zero-ehnowedge Proofs, Investments and Web3. She provides a comprehensive coverage that captures a new trend and a keen eye on technology, providing and involving readers in a digital financial environment that constantly evolves.
More
Alisa Davidson
Alisa, a dedicated reporter for MPOST, specializes in the vast areas of Cryptocurrency, Zero-ehnowedge Proofs, Investments and Web3. She provides a comprehensive coverage that captures a new trend and a keen eye on technology, providing and involving readers in a digital financial environment that constantly evolves.
More