Two decentralized finance projects on Binance Smart Chain, PancakeSwap and Cream Finance, have fallen victim to phishing attacks. Users of both platforms are suffering the phishing attempts, requiring users to enter their personal keys. . On the 15th of March, Cream Finance said in a tweet:
“Our DNS has been compromised by a third party; some users are seeing requests for seed phrase on app.cream.finance. DO NOT enter your seed phrase. We will never ask you to submit any private key or seed phrases.”
In a separate tweet, Cream Finance also quoted another tweet from PancakeSwap confirming the hack on its website. PancakeSwap announced:
“This is confirmed. DO NOT go to the Pancakeswap website until we confirm it is all clear. NEVER EVER input your seed phrase or private keys on a website. We are working on recovery now. Sorry for the trouble.”
Cointelegraph said in a report that Cream Finance was inaccessible as of press time. The report also said that PancakeSwap was loading correctly but was still showing the phishing attempt. Additionally, a fake window was popping up upon trying to connect MetaMask. The window prompts users to input their private keys.
Both PancakeSwap and Cream Finance have described the breaches as DNS attacks. The Internet Corporation for Assigned Names and Numbers (ICANN) records showed that the DNS registration for both websites was updated shortly before the projects announced the attack.
Image Credits: Pixabay
Keep in mind that we may receive commissions when you click our links and make purchases. However, this does not impact our reviews and comparisons. We try our best to keep things fair and balanced, in order to help you make the best choice for you.
