{"id":38968,"date":"2021-03-15T18:40:29","date_gmt":"2021-03-15T16:40:29","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=38968"},"modified":"2025-08-30T07:16:04","modified_gmt":"2025-08-30T04:16:04","slug":"cz-urges-users-to-refrain-from-interacting-with-pancakeswap-and-other-bsc-projects-amid-dns-hijack-attack","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/cz-urges-users-to-refrain-from-interacting-with-pancakeswap-and-other-bsc-projects-amid-dns-hijack-attack\/","title":{"rendered":"CZ urges users to refrain from interacting with PancakeSwap and other BSC projects amid DNS hijack attack"},"content":{"rendered":"<p>The head of Binance, Changpeng Zhao, urged users to temporarily refrain from interacting with PancakeSwap and Cream Finance. These and other DeFi projects built on the Binance Smart Chain (BSC) have come under attack.<\/p>\n<p><!--more--><\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">A number of DeFi projects are under DNS hijack attack. Pancake, Cream, etc. Please be VERY VERY careful and not use them until they recover the situation. Please also help spread the awareness. <a href=\\\"https:\/\/t.co\/rG8Ad77nYF\\\">https:\/\/t.co\/rG8Ad77nYF<\/a><\/p>\n<p>\u2014 CZ \ud83d\udd36 Binance (@cz_binance) <a href=\\\"https:\/\/twitter.com\/cz_binance\/status\/1371473348866179072?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p>According to Zhao, attackers gained access to the DNS of a number of BSC-based project websites in order to inject malicious elements into their interfaces.<\/p>\n<p>PancakeSwap representatives recommended that users do not visit the project&#8217;s website until an official notice about the remediation is issued.<\/p>\n<blockquote class=\\\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p>\u00abNever enter your seed phrase or private keys on a website. We are currently working on fixing the problem\u00bb, \u2014 wrote representatives of the largest DEX ecosystem on BSC.<\/p>\n<\/blockquote>\n<p><strong>Update:<\/strong> PancakeSwap said it has regained control of the DNS. Some users may still experience login issues depending on their server location.<\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">We have regained access to the DNS.<\/p>\n<p>Some users might still be affected, depending on their DNS resolution as some propagation time may be needed.<\/p>\n<p>Will send another update shortly.<\/p>\n<p>Thanks for waiting.<\/p>\n<p>\u2014 PancakeSwap \ud83e\udd5e #BSC (@PancakeSwap) <a href=\\\"https:\/\/twitter.com\/PancakeSwap\/status\/1371492312681902080?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p><strong>Update:<\/strong> the third-largest by TVL project Autofarm Netowork said that user funds are safe.<\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">\u26a0\ufe0f All PCS LPs and assets in Autofarm vaults are SAFU. Give Hops &#038; his team some time to sort out the issue<\/p>\n<p>In the meantime, DO NOT key in your seed phrase\/ private key in PancakeSwap. <a href=\\\"https:\/\/t.co\/UdSa0hPwbP\\\">https:\/\/t.co\/UdSa0hPwbP<\/a><\/p>\n<p>\u2014 autofarm.network (@autofarmnetwork) <a href=\\\"https:\/\/twitter.com\/autofarmnetwork\/status\/1371481578442919937?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p><strong>Update:<\/strong> Cream Finance representatives said that the cream.finance and app.cream.finance sites have been compromised and urged users to temporarily cease interacting with them. According to them, the site app.creamfinance.co is safe.<\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">To our community ~ <a href=\\\"https:\/\/t.co\/Tz2zo7WsXd\\\">https:\/\/t.co\/Tz2zo7WsXd<\/a> and <a href=\\\"https:\/\/t.co\/Hr6S4Fqodo\\\">https:\/\/t.co\/Hr6S4Fqodo<\/a> are now considered compromised sites \u2014 DO NOT USE either domain until further notice.<\/p>\n<p>We have purchased and deployed to <a href=\\\"https:\/\/t.co\/BqbK4lkSNm\\\">https:\/\/t.co\/BqbK4lkSNm<\/a> \u2014 this site is SAFE to use.<\/p>\n<p>\u2014 Cream Finance \ud83c\udf66 (@CreamdotFinance) <a href=\\\"https:\/\/twitter.com\/CreamdotFinance\/status\/1371495499413385227?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><strong>Update:<\/strong> Cream Finance regained control over the domain.<\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">\ud83d\ude4c We have regained control of DNS and everything is back to normal on <a href=\\\"https:\/\/t.co\/Tz2zo7WsXd\\\">https:\/\/t.co\/Tz2zo7WsXd<\/a> and <a href=\\\"https:\/\/t.co\/JmBbwhWu4h\\\">https:\/\/t.co\/JmBbwhWu4h<\/a><\/p>\n<p>These sites are now safe to use.<\/p>\n<p>Thank you for your patience as we are continue to monitor this situation. \ud83d\ude47\ud83c\udffc\u200d\u2640\ufe0f\ud83d\ude47\u200d\u2642\ufe0f<\/p>\n<p>\u2014 Cream Finance \ud83c\udf66 (@CreamdotFinance) <a href=\\\"https:\/\/twitter.com\/CreamdotFinance\/status\/1371528332521566212?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p><strong>Update:<\/strong> Cream Finance regained control over the domain.<\/p>\n<blockquote class=\\\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">\ud83d\ude4c We have regained control of DNS and everything is back to normal on <a href=\\\"https:\/\/t.co\/Tz2zo7WsXd\\\">https:\/\/t.co\/Tz2zo7WsXd<\/a> and <a href=\\\"https:\/\/t.co\/JmBbwhWu4h\\\">https:\/\/t.co\/JmBbwhWu4h<\/a><\/p>\n<p>These sites are now safe to use.<\/p>\n<p>Thank you for your patience as we are continue to monitor this situation. \ud83d\ude47\ud83c\udffc\u200d\u2640\ufe0f\ud83d\ude47\u200d\u2642\ufe0f<\/p>\n<p>\u2014 Cream Finance \ud83c\udf66 (@CreamdotFinance) <a href=\\\"https:\/\/twitter.com\/CreamdotFinance\/status\/1371528332521566212?ref_src=twsrc%5Etfw\\\">March 15, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p>As of writing, PancakeSwap&#8217;s TVL stands at $3.88 billion. The Cream Finance lending service has a TVL of $47.7 million.<\/p>\n<div class=\\\"wp-block-image size-full wp-image-128063\\\">\n<figure class=\\\"aligncenter\\\"><img loading=\\\"lazy\\\" decoding=\\\"async\\\" width=\\\"1039\\\" height=\\\"838\\\" src=\\\"https:\/\/u1f987.com\/wp-content\/uploads\/Defistation-1.png\\\" alt=\\\"Changpeng Zhao urged users not to interact with PancakeSwap and other projects due to attack\\\" class=\\\"wp-image-128063\\\" srcset=\\\"https:\/\/u1f987.com\/wp-content\/uploads\/Defistation-1.png 1039w, https:\/\/u1f987.com\/wp-content\/uploads\/Defistation-1-300x242.png 300w, https:\/\/u1f987.com\/wp-content\/uploads\/Defistation-1-1024x826.png 1024w, https:\/\/u1f987.com\/wp-content\/uploads\/Defistation-1-768x619.png 768w\\\" sizes=\\\"auto, (max-width: 1039px) 100vw, 1039px\\\" \/><figcaption>Data: <a href=\\\"https:\/\/www.defistation.io\/\\\" target=\\\"_blank\\\" rel=\\\"noopener\\\">Defistation<\/a>.<\/figcaption><\/figure>\n<\/div>\n<p>In early March <a href=\"https:\/\/u1f987.com\/en\/news\/pancakeswap-surpasses-uniswap-in-tvl-on-binance-smart-chain\">PancakeSwap surpassed Uniswap in TVL<\/a>.<\/p>\n<p>Earlier ForkLog reported that the BSC-based <a href=\"https:\/\/u1f987.com\/en\/news\/binance-backed-non-custodial-dodo-loses-3-8-million-to-vulnerability\">exchange DODO<\/a> lost $3.8 million due to a vulnerability.<\/p>\n<p>Subscribe to ForkLog News on Telegram: <a href=\\\"https:\/\/t.me\/forkloglive\\\" target=\\\"_blank\\\" rel=\\\"nofollow noopener\\\">ForkLog FEED<\/a> \u2014 the full news feed, <a href=\\\"https:\/\/telegram.me\/forklog\\\" target=\\\"_blank\\\" rel=\\\"nofollow noopener\\\">ForkLog<\/a> \u2014 the most important news and polls.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The head of Binance, Changpeng Zhao, urged users to temporarily refrain from interacting with PancakeSwap and Cream Finance. These and other DeFi projects built on the Binance Smart Chain (BSC) have come under attack.<\/p>\n","protected":false},"author":1,"featured_media":38969,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1307,935,1154],"class_list":["post-38968","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-bnb-chain","tag-changpeng-zhao","tag-crimes"],"aioseo_notices":[],"amp_enabled":true,"views":"18","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/38968","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=38968"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/38968\/revisions"}],"predecessor-version":[{"id":38970,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/38968\/revisions\/38970"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/38969"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=38968"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=38968"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=38968"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}