Skip to main content
Back to Security Snacks
Web3

Web3-Related Domain Takeovers

Published on: 
July 12, 2024

Domain takeovers of Squarespace-held domains

Crypto News relayed widespread social media reports of Web3-related domain takeovers of Squarespace-held domains. Using 0xngmi’s list as a guidepost, we are releasing passive DNS records for the listed sites observed since 2024-07-01 to allow for further analysis (please note two sets of data, one in epoch time, one set in a subfolder with human-readable time). Inclusion in this list does NOT necessarily indicate compromise.

Crypto News link: https://crypto.news/defi-protocols-compromised-as-many-domains-under-dns-siege/

0xngmi link: https://gist.github.com/0xngmi/789e297f3107d3c28c56da7acf11828d

Passive DNS records: https://github.com/DomainTools/SecuritySnacks/tree/main/2024/DeFiDNS

Screenshots from DNSDB Scout of two services that indicated attempted or successful compromise.

Related Content

SecuritySnacks
Cybersecurity Reading List - Week of 2026-04-06
From Gramsci's 'morbid symptoms' to modern threat intelligence - a cybersecurity roundup exploring why defenders should treat root causes over chasing dramatic threats, with curated links on ransomware, HUMINT, disinformation, and more.
Learn More
SecuritySnacks
SecuritySnack - OpenAI Anti-Ads Malware
Stay protected against the "ChatGPT Ad Blocker" malware. This investigation reveals how a malicious Chrome extension uses Discord webhooks to steal private ChatGPT conversations, prompts, and metadata.
Learn More
SecuritySnacks
SecuritySnack - CloudFlare Anti-Security For Phishing
A Microsoft 365 credential harvesting campaign is exploiting CloudFlare's anti-bot and human verification features to evade detection. Learn how attackers use IP blocklists, user-agent filtering, and obfuscated scripts to bypass security scanners—and what it means for the industry.
Learn More

Heading

SecuritySnacks
Research
Newsletters
Podcast Episodes
About
No items found.