CoW Swap's DAO Warns Users to Avoid Platform Following Domain Hijacking Attack
The platform for decentralized exchange aggregation has advised users to avoid accessing its website following a frontend security breach.
CoW Swap, a platform that aggregates decentralized exchanges, has issued a warning to its user base asking them to stop using its website following a domain hijacking incident by an unidentified malicious actor.
On Tuesday, the decentralized autonomous organization (DAO) responsible for operating CoW Swap announced via X that its website had fallen victim to a "DNS [Domain Name System] hijacking" attack, which prompted the organization to suspend its backend operations and APIs. At the time this article was published, the frontend security breach affecting the website http://swap.cow.fi remained active and unresolved.
"We are now actively working to resolve the situation," said CoW Swap. "Please continue to refrain from using swap dot cow dot fi until we confirm that it is safe to use."
Domain Name System attacks similar to the one currently affecting CoW Swap have become a recurring threat within the cryptocurrency and blockchain industry, where malicious actors target user assets through phishing schemes. In 2023, the decentralized exchange platform Balancer fell victim to a domain-based attack, and Curve Finance has publicly stated that it has been subjected to numerous DNS hijacking attempts over time.
The price of the CoW Protocol's COW token dropped more than 3% amid news of the domain hijacking, to $0.2159 from $0.2229.
Web3 hacks, driven by phishing, resulted in a half billion dollars in losses in Q1 2026
Blockchain security company Hacken reported on Tuesday that Web3 projects lost $482 million to hacks and scams in the first quarter of 2026. According to Hacken, there were 44 incidents over Q1 2026, most of which were phishing and social engineering attacks.