ExchangeDEX+

Buy Crypto Markets Spot Futures500X Earn Events

Gold Bar & BTC Giveaway2000g

The decentralized exchanges Aerodrome and Velodrome reported a large-scale DNS hack that redirected their centralized domains to phishing pages. The incident took place on November 21, 2025, and on 22 November, the project teams officially confirmed the “frontend compromise”, urging users to immediately stop any interaction with the web versions of the services. According to […] Сообщение Aerodrome and Velodrome Published Report on NameSilo Hack появились сначала на INCRYPTED.The decentralized exchanges Aerodrome and Velodrome reported a large-scale DNS hack that redirected their centralized domains to phishing pages. The incident took place on November 21, 2025, and on 22 November, the project teams officially confirmed the “frontend compromise”, urging users to immediately stop any interaction with the web versions of the services. According to […] Сообщение Aerodrome and Velodrome Published Report on NameSilo Hack появились сначала на INCRYPTED.

Aerodrome and Velodrome Published Report on NameSilo Hack

By: Incrypted

2025/11/24 20:38

VELODROME$0.03174+0.06%

STOP$0.02017-0.04%

A DNS attack on Aerodrome and Velodrome resulted in $700,000 in user losses.
In addition, the exchanges’ teams are migrating domains after the hack.
At the same time, decentralized dApps were not affected, nor was the MetaDEX platform.

The decentralized exchanges Aerodrome and Velodrome reported a large-scale DNS hack that redirected their centralized domains to phishing pages.

The incident took place on November 21, 2025, and on 22 November, the project teams officially confirmed the “frontend compromise”, urging users to immediately stop any interaction with the web versions of the services.

According to the teams, the root of the attack was an internal compromise on the side of the NameSilo registrar. According to the preliminary investigation, the attackers bypassed multisig control in the 3DNS system, removed DNSSEC, and redirected domains to malicious pages.

The full remediation, taking into account the time it took to distribute the patches, took less than four hours.

User losses are estimated at around $700,000, which is the amount of money signed on phishing pages before the attack was fully blocked.

The team said it would not restore domains on the old infrastructure. Aerodrome and Velodrome are currently working with leading corporate registrars and security consultants, and the domain migration is expected to be completed next week.

Security teams will be able to run a decentralized application (dApp) in a fully autonomous mode:

According to the statement, Aero and Velo Foundations are developing a grant program for users who have lost money due to signing malicious transactions:

Amid the attack, the Aerodrome Finance (AERO) token dropped by 5.93% overnight, lagging behind the overall market.

Data on AERO. Source: CoinMarketCap.

The hacking of the Aerodrome and Velodrome frontends has already made news in the past: in November 2023, the teams also reported the compromise of web interfaces and the loss of users, which highlights the systemic risks of a centralized DNS infrastructure for DeFi.

Earlier, in February 2024, the asset showed an explosive growth of over 97% after the announcement of Coinbase Ventures’ investment as part of the Base Ecosystem Fund.

Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@support.mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.