The hack produced a popup window that inspired Polygon and Fantom customers to enter their pockets seed phrase.
Hackers Compromise Gateways to Polygon, Fantom
Two Ankr RPC gateways for accessing Polygon and Fantom have been compromised.
— Ankr (@ankr) July 1, 2022
Hackers exploited a vulnerability to assault the node infrastructure agency’s gateways to Polygon and Fantom Friday. Customers who had accessed the Layer 1 networks by way of Ankr’s endpoints have been offered with a popup window that attempted to trick them into coming into their pockets seed phrase. “Funds are in danger,” the malicious word learn, accompanied by a hyperlink to a web site prompting customers to enter their seed phrase. By gathering seed phrases, the hackers might achieve entry to their targets’ wallets to steal their funds.
Ankr supplies entry to Proof-of-Stake blockchains by providing node endpoints, staking companies, and different merchandise. It’s thought-about a vital pillar of Web3 infrastructure alongside different comparable initiatives like Alchemy and Infura. Nonetheless, like most different node operators, it’s a centralized entity owned by an organization quite than a DAO.
The pseudonymous safety researcher CIA Officer alerted customers to the hack on Twitter Friday, earlier than Polygon’s chief data safety officer Mudit Gupta put out a message urging customers to make use of Alchemy or an alternate node supplier till the bug is fastened. Gupta then added that Polygon would “work carefully with Ankr to make sure this doesn’t occur once more” and teased plans of a decentralized RPC gateway mission. Ankr additionally confirmed the assault on Twitter, saying it was “investigating some reported points.”
Replace: Ankr has confirmed that the affected RPC gateways have been “absolutely restored.”
Disclosure: On the time of writing, the writer of this piece owned ETH, MATIC, FTM, and several other different cryptocurrencies.