\n<\/p>\n
Blockchain networks Polygon and Fantom suffered a DNS attack<\/a> Friday that directed users to malicious websites created to steal the keys to their digital wallets.\u00a0<\/p>\n Safe access to the crypto platforms\u2019 websites was restored<\/a> shortly before noon Friday, according to the co-founder of Ankr, an infrastructure firm. Ankr provides Polygon and Fantom with public RPC gateways, computer programs that allow crypto wallets and web browsers to communicate with Ethereum validator nodes.\u00a0<\/p>\n The attack began with a breach at Ankr\u2019s DNS provider, Gandi<\/a>, according to Ankr co-founder Chandler Song.<\/p>\n \u201cThe attacker basically social-engineered the customer service [at Gandi] and pretended to be an Ankr employee,\u201d Song explained in an interview with The Defiant, and \u201chad the entire corporate email address changed on Gandi.\u201d\u00a0<\/p>\n The attack affected a pair of nodes that Ankr offers the Polygon and Fantom communities at no cost, \u201csimply out of goodwill to the developer community and the users,\u201d Song said. The attacker was then able to send users an error message directing them to a website where they were instructed to connect their crypto wallets.\u00a0<\/p>\n \u201cIt\u2019s obviously a phishing scam,\u201d Song said. \u201cHopefully not a single person clicked on those websites, but so far I\u2019ve not heard of anyone clicking on those websites.\u201d<\/p>\n Polygon co-founder Sandeep Nailwal took to Twitter to assure<\/a> users the Polygon blockchain was running without issues, and to direct them to alternative RPC providers, such as Infura and Alchemy.\u00a0<\/p>\n Song slammed Gandi\u2019s security practices, saying it was too easy for the attacker to successfully impersonate an Ankr employee. He added that Ankr had already ditched Gandi as it DNS provider for its free Polygon and Fantom RPC service.\u00a0<\/p>\n It wasn\u2019t the only change discussed in light of Friday\u2019s incident.\u00a0<\/p>\n Polygon is looking into longer-term solutions that would prevent a repeat of Friday\u2019s breach, according to chief information security officer Mudit Gupta.\u00a0Ankr Nodes Affected<\/h4>\n
Gandi Security Practices\u00a0<\/h4>\n
\u201cWe are also working on a more decentralized alternative as a research project and a foundation owned RPC node for more reliability,\u201d he tweeted<\/a>.<\/p>\n<\/p><\/div>\n