The team behind eth.limo, a key gateway for Ethereum Name Service domains, has confirmed that its recent domain hijack was the result of a targeted social engineering attack against its DNS provider, EasyDNS.

The incident briefly raised concerns across the crypto community, as eth.limo plays a critical role in connecting decentralized websites to traditional web browsers.

Attack Exploited Account Recovery Process

According to the project’s post-mortem, the attacker impersonated a member of the eth.limo team to initiate an account recovery request with EasyDNS.

This allowed the attacker to gain control of the domain account and modify its DNS settings.

Once access was secured, the attacker changed the nameserver records and redirected traffic through Cloudflare, potentially opening the door to phishing or malicious redirects.

Critical Infrastructure at Risk

eth.limo acts as a bridge between Web3 and Web2, enabling access to around 2 million .eth websites through standard browsers.

A successful hijack could have redirected users to harmful sites without their knowledge.

Ethereum co-founder Vitalik Buterin even warned users to avoid his blog during the incident until the issue was resolved.

DNSSEC Helped Limit Damage

Despite the breach, major damage was avoided thanks to Domain Name System Security Extensions (DNSSEC).

Because the attacker did not have the correct cryptographic signing keys, most DNS resolvers rejected the forged records.

As a result, users encountered errors instead of being redirected to malicious content, significantly reducing the potential impact.

Both eth.limo and EasyDNS credited DNSSEC with preventing a much more serious outcome.

EasyDNS Accepts Responsibility

EasyDNS CEO Mark Jeftovic acknowledged the failure, calling it the first successful social engineering attack against a client in the company’s 28-year history.

He described the incident as highly sophisticated and confirmed that an internal investigation is ongoing.

Security Upgrades Underway

In response, EasyDNS is implementing stronger safeguards.

The company plans to migrate eth.limo to its more secure Domainsure platform, which removes account recovery mechanisms altogether, a key vulnerability exploited in this attack.

Additional security improvements are also being rolled out to prevent similar incidents in the future.

Part of a Broader Trend

The eth.limo breach is the latest in a string of domain hijacking incidents targeting crypto-related platforms.

Recent cases involving projects like CoW Swap and Steakhouse Financial highlight a growing trend of attackers exploiting human vulnerabilities rather than technical flaws.

Ongoing Vigilance Needed

While no user impact has been confirmed so far, the incident underscores the importance of robust security practices across both Web2 and Web3 infrastructure.

As crypto adoption grows, protecting critical access points like domain services will remain essential to maintaining trust and preventing large-scale exploits.

Aave, one of the largest decentralized lending protocols, saw nearly $8 billion wiped from its total value locked (TVL) over the weekend following a major exploit tied to Kelp DAO.

The incident triggered widespread withdrawals and exposed vulnerabilities in the interconnected DeFi ecosystem.

Massive Outflows Shake Aave

Data shows Aave’s TVL dropped from around $26.4 billion to $18.6 billion within a day, causing it to lose its position as the top DeFi protocol.

The sharp decline came as users rushed to withdraw funds after hackers leveraged the platform to borrow against stolen assets.

Exploit Leads to “Bad Debt”

The attack began when hackers stole approximately $293 million worth of rsETH tokens from Kelp DAO’s LayerZero-based bridge.

They then used the stolen assets as collateral on Aave to borrow wrapped Ether, creating an estimated $195 million in bad debt on the protocol.

This chain reaction highlighted how a single exploit can ripple across multiple platforms in DeFi.

Liquidity Crunch Hits Stablecoin Pools

Aave’s stablecoin lending pools for USDT and USDC reached 100% utilization following the incident.

This means over $5 billion in stablecoins is effectively locked, with users unable to withdraw funds until liquidity improves or loans are repaid.

The situation underscores the risks tied to liquidity mismatches during periods of market stress.

AAVE Token Drops Sharply

The impact was also reflected in Aave’s native token.

AAVE fell nearly 20% in just over 24 hours, dropping from around $112 to below $90 as investor confidence weakened.

Large Players Exit Positions

Major withdrawals came from institutional players and crypto whales.

MEXC reportedly withdrew around $431 million, while Abraxas Capital pulled approximately $392 million from the protocol, accelerating the liquidity drain.

Emergency Measures and Market Freezes

In response, Aave froze several markets tied to rsETH and wrapped Ether across multiple networks to prevent further risk.

The protocol also confirmed that rsETH on Ethereum remains fully backed, attempting to reassure users amid the turmoil.

Meanwhile, other platforms connected to rsETH or the affected bridge, including Curve Finance, Ethena, and BitGo’s Wrapped Bitcoin, paused related operations as a precaution.

Stress Test for Aave’s Security Model

The event marks a major test for Aave’s “Umbrella” risk management system, introduced in 2025 to protect against bad debt through automated mechanisms.

While Aave maintains that its overcollateralization and liquidation systems help shield lenders, the incident shows how external exploits can still create systemic pressure.

DeFi Interconnectedness Under Scrutiny

The Aave crisis highlights the growing complexity of DeFi, where protocols are deeply interconnected.

A vulnerability in one platform can quickly cascade across others, amplifying risk and triggering liquidity shocks.

As the ecosystem continues to evolve, improving security and risk isolation will remain critical for maintaining user confidence.

Stablecoin issuer Circle has introduced USDC Bridge, a new interface designed to make moving USDC across blockchains faster and easier.

Built on top of its existing Cross-Chain Transfer Protocol (CCTP), the tool aims to simplify one of crypto’s more complex user experiences, cross-chain transfers.

Simplifying Cross-Chain Transfers

The USDC Bridge allows users to transfer USDC between blockchains using a native burn-and-mint mechanism, removing the need for wrapped or synthetic versions of the token.

Circle says the process is designed to be more transparent and predictable, with key improvements such as automatic gas fee handling, upfront cost visibility, and real-time status updates.

The goal is to eliminate much of the friction that has historically made bridging assets difficult, especially for less experienced users.

Built on Existing Infrastructure

The new interface expands on Circle’s CCTP, launched in April 2023, which already processes hundreds of millions of dollars in USDC transfers daily.

By removing reliance on wrapped tokens, CCTP helped standardize how stablecoins move across networks, and the USDC Bridge now aims to make that functionality more accessible.

Broad Blockchain Support

USDC Bridge currently supports transfers across at least 17 Ethereum Virtual Machine-compatible networks.

These include major blockchains such as Ethereum, Avalanche, Arbitrum, Base, Optimism, and Polygon, along with newer networks like Monad and Sonic.

Meanwhile, the underlying CCTP infrastructure also supports non-EVM chains such as Solana, Sui, and Aptos.

Improving Crypto Interoperability

Cross-chain bridges play a key role in connecting fragmented blockchain ecosystems, allowing users to move assets freely between networks.

However, complex interfaces and unclear fee structures have often made them difficult to use, slowing broader adoption.

Circle’s new tool is part of a wider industry effort to make interoperability more intuitive and user-friendly.

Challenges Still Loom

Despite the launch, Circle is currently facing legal scrutiny.

The company was recently hit with a class action lawsuit related to its handling of USDC transfers linked to the Drift Protocol exploit, where it allegedly failed to freeze stolen funds.

The case highlights ongoing debates around the responsibilities of crypto infrastructure providers during security incidents.

Driving Stablecoin Utility Forward

With USDC Bridge, Circle is doubling down on making stablecoins more practical for everyday use across multiple blockchains.

As demand for cross-chain functionality grows, tools that simplify asset movement could play a crucial role in expanding the utility of stablecoins within the broader crypto ecosystem.