DeFi Platform CoW Swap Issues Security Alert Following DNS Hijacking Incident

A prominent decentralized exchange aggregator, CoW Swap, has temporarily suspended its services after detecting a domain name system hijacking incident. The incident, which occurred at 14:54 UTC, has prompted the team to caution users against interacting with the platform until further notice. Although the protocol's underlying infrastructure, including its backend and APIs, was not directly compromised, it has been paused as a precautionary measure. The attack has highlighted the ongoing security risks associated with the front-end layer of DeFi platforms. DNS hijacking is a type of attack that allows hackers to redirect users from a legitimate domain to a fake site, often to steal cryptocurrency or sensitive information. CoW Swap, which operates as a decentralized trading interface, sources liquidity from multiple venues and uses a 'Coincidence of Wants' mechanism to match trades directly between users or batch them for more efficient execution. The platform is designed to minimize slippage and limit exposure to maximal extractable value (MEV), a practice where bots reorder transactions to extract profit at users' expense. CoW Swap is governed by CoW DAO, a decentralized autonomous organization that emphasizes user protection, execution quality, and fair trading outcomes. The team has urged users to refrain from using the platform until the issue is resolved, stating, 'We are now actively working to resolve the situation. Please continue to refrain from using swap dot cow dot fi until we confirm that it is safe to use.'