{"id":31315,"date":"2022-07-01T11:16:11","date_gmt":"2022-07-01T15:16:11","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=31315"},"modified":"2024-04-05T09:27:48","modified_gmt":"2024-04-05T13:27:48","slug":"polygon-fantom-faces-network-attack","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/polygon-fantom-faces-network-attack\/","title":{"rendered":"Polygon, Fantom face network attack"},"content":{"rendered":"\n<h5 class=\"wp-block-heading\">Ankr, a blockchain infrastructure provider, announced that hackers were targeting its Remote Procedure Calls (RPC) services which it offers to Polygon and <a href=\"https:\/\/coinscreed.com\/staging\/fantom-blockchain-suffers-another-massive-defi-hack.html\" target=\"_blank\" rel=\"noreferrer noopener\">Fantom<\/a>. <\/h5>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"988\" height=\"494\" src=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1.png\" alt=\"Polygon Fantom face network attack\" class=\"wp-image-31389\" srcset=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1.png 988w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1-300x150.png 300w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1-768x384.png 768w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1-150x75.png 150w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1-360x180.png 360w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1-750x375.png 750w\" sizes=\"(max-width: 988px) 100vw, 988px\" \/><figcaption class=\"wp-element-caption\">Polygon, Fantom face network attack<\/figcaption><\/figure>\n\n\n\n<p>The chief information security officer at 0xPolygon, Mudit Gupta, revealed on Twitter that a <a href=\"https:\/\/www.google.com\/search?q=Polygon%2C+Fantom+faces+network+attack&rlz=1C1SQJL_enNG889NG889&oq=Polygon%2C+Fantom+faces+network+attack&aqs=chrome..69i57j33i160.980j0j9&sourceid=chrome&ie=UTF-8\" target=\"_blank\" rel=\"noreferrer noopener\">DNS hijack<span class=\"wpil-link-icon\" title=\"Link goes to external site.\" style=\"margin: 0 0 0 5px;\"><svg width=\"24\" height=\"24\" style=\"height:16px; width:16px; fill:#000000; stroke:#000000; display:inline-block;\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" xmlns:svg=\"http:\/\/www.w3.org\/2000\/svg\"><g id=\"wpil-svg-outbound-7-icon-path\" fill=\"none\" clip-path=\"url(#clip0_31_188)\">\r\n                            <path d=\"M9.16724 14.8891L20.1672 3.88908\" stroke-linecap=\"round\"\/>\r\n                            <path d=\"M13.4497 3.53554L20.5208 3.53554L20.5208 10.6066\" stroke-linecap=\"round\" stroke-linejoin=\"round\"\/>\r\n                            <path d=\"M17.5 13.5L17.5 16.26C17.5 17.4179 17.5 17.9968 17.2675 18.4359C17.0799 18.7902 16.7902 19.0799 16.4359 19.2675C15.9968 19.5 15.4179 19.5 14.26 19.5L7.74 19.5C6.58213 19.5 6.0032 19.5 5.56414 19.2675C5.20983 19.0799 4.92007 18.7902 4.73247 18.4359C4.5 17.9968 4.5 17.4179 4.5 16.26L4.5 9.74C4.5 8.58213 4.5 8.0032 4.73247 7.56414C4.92007 7.20983 5.20982 6.92007 5.56414 6.73247C6.0032 6.5 6.58213 6.5 7.74 6.5L11 6.5\" stroke-linecap=\"round\"\/>\r\n                        <\/g>\r\n                        <defs>\r\n                            <clipPath id=\"clip0_31_188\">\r\n                                <rect fill=\"white\" height=\"24\" width=\"24\"\/>\r\n                            <\/clipPath>\r\n                        <\/defs><\/svg><\/span><\/a> has compromised Ankr's RPC gateway for Polygon (polygon-rpc.com) and Fantom (rpc.ftm.tools). He further emphasized that his business has no control over the services rendered by third parties.<\/p>\n\n\n\n<p>Additionally, Fantom has urged its users not to make use of the hacked RPC. Gupta acknowledged working with Ankr and advised using Alchemy RPCs up until the problem is fixed. He also emphasized that Polygon is developing its own RPC in order to increase reliability.<\/p>\n\n\n\n<p>The Polygon and Fantom networks are not available on Ambire wallets, it was disclosed. Users have also been urged by QuickSwap <a href=\"https:\/\/coinscreed.com\/staging\/osmosis-dex-faces-hack-resulting-in-5m-loss.html\" target=\"_blank\" rel=\"noreferrer noopener\">DEX<\/a> to avoid using the compromised networks until additional details are available.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-about-the-attack-on-polygon-and-fantom\">About the Attack on polygon and Fantom<\/h2>\n\n\n\n<p>An error message urging users to transfer their payments to polygonapp[.]net is displayed to users of the hacked RPC. The fraud redirects customers to a another page where they can enter their seed.<\/p>\n\n\n\n<p>It's unknown how much harm the attack caused. However, a long list of security flaws that <a href=\"https:\/\/coinscreed.com\/staging\/kpmg-enters-the-metaverse-with-30m-investment-in-web3-training.html\" target=\"_blank\" rel=\"noreferrer noopener\">Web3 companies<\/a> must fix has recently been expanded to include a new attack vector that targets RPC endpoints.<\/p>\n\n\n\n<p>The attack also follows a number of significant cryptocurrency attacks that occurred in July. The greatest target last month was Harmony, a decentralized exchange, when $100 million in platform funds were taken.<\/p>\n\n\n\n<p>Bored Ape and <a href=\"https:\/\/coinscreed.com\/staging\/yuga-labs-made-millions-on-otherside-projec.html\" target=\"_blank\" rel=\"noreferrer noopener\">Otherside <\/a>NFT projects' Discords were hijacked, while an exploit cost the Ethereum-based DeFi platform Inverse Finance $1.2 million.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ankr, a blockchain infrastructure provider, announced that hackers were targeting its Remote Procedure Calls (RPC) services which it offers to Polygon and Fantom. The chief information security officer at 0xPolygon, Mudit Gupta, revealed on Twitter that a DNS hijack has compromised Ankr&#8217;s RPC gateway for Polygon (polygon-rpc.com) and Fantom (rpc.ftm.tools). He further emphasized that his [&hellip;]<\/p>\n","protected":false},"author":12,"featured_media":31389,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21],"tags":[5258,4872,395],"class_list":["post-31315","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-ankr","tag-fantom-2","tag-polygon"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/07\/image-1.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/31315","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=31315"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/31315\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/31389"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=31315"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=31315"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=31315"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}