Two Polygon, Fantom Front Ends Hit by DNS Attack

Don't miss CoinDesk's Consensus 2022, the must-attend crypto & blockchain festival experience of the year in Austin, TX this June 9-12.

Two remote procedure call (RPC) interfaces for the Polygon and Fantom blockchains were impacted in a domain name system (DNS) hijack attack on Friday, developers said.

RPC refers to a set of protocols that allow a client, such as MetaMask, to interact with a blockchain. DNS hijacking, on the other hand, is a type of cyber attack in which queries are manipulated in order to redirect users to malicious sites.

“Public RPC gateway provided by Ankr for Polygon (https://polygon-rpc.com) and Fantom (https://rpc.ftm.tools) were comprised via DNS hijack earlier today,” tweeted Mudit Gupta, Polygon's chief information security officer. “Use Alchemy or others while this is fixed.”

Public RPC gateway provided by Ankr for Polygon (https://t.co/NEQW6sEUKe) and Fantom (https://t.co/apZkmh2ERA) were comprised via DNS hijack earlier today.

Polygon and Fantom foundation have no control over services provided by others.

Use Alchemy or others while this is fixed.

— Mudit Gupta (@Mudit__Gupta) July 1, 2022

Gupta told CoinDesk in a Twitter direct message that the attack was a “middleware exploit.” He added: “No funds lost as far as we know but we are still investigating.”

Gupta added that decentralized applications (dapps) that used the RPC endpoint are currently unavailable. Meanwhile, at writing time, Gupta noted that Web3 infrastructure platform Ankr had regained access to its RPC accounts.