Overview
- Aerodrome says its centralized .finance and .box domains are compromised and instructs users to avoid them until further notice.
- The project lists aero.drome.eth.limo and aero.drome.eth.link as safe ENS mirrors for accessing the interface during remediation.
- Velodrome reports an equivalent front‑end compromise on Optimism and warns users not to access the site through any URL until cleared.
- The attack redirected visitors to spoofed pages with malicious wallet prompts, investigations are ongoing, and no official figures on losses have been confirmed.
- Teams are working with domain providers after Aerodrome flagged issues to Web3 registrar My.box, with context including a similar 2023 DNS incident and a 2026 plan to merge the protocols under the Aero hub.