CoW Swap pause after DNS hijack send traders go fake phishing frontend
CoW Swap pause dia protocol for April 14, 2026 after attackers commot hijack DNS for swap.cow.fi and redirect users go malicious phishing frontend. Blockaid drop early warning around 14:54 UTC, mark cow.fi as malicious and tell people make dem stop interact and revoke token approvals.
CoW DAO confirm say na DNS hijacking around 16:24 UTC. Dem talk say the CoW Protocol smart contracts no kena, but dem pause backend and API services to fix the domain. For anybody wey use CoW Swap interface after the alert, DAO recommend make dem revoke approvals via revoke.cash.
Aave too temporarily disable CoW Swap endpoints for integrators as precaution. As of publication, CoW DAO never confirm full restoration or release post-mortem, and no confirmed public report of user funds loss.
For traders, na near-term UX/counterparty risk event for CoW Swap. Expect short-term volatility and more cautious liquidity behavior until domain and endpoints don verify safe again. Make sure to monitor the “revoke approvals” advice and any restoration updates closely.
Bearish
Dis CoW Swap DNS hijack no be smart-contract failure, but e directly create risk for traders: phishing exposure, possible wallet-approval abuse, and temporary loss of access/liquidity. For short term, protocol pause and third-party endpoint shutdowns (like Aave) fit reduce confidence for routing and execution, wey normally put pressure for market of di related token COW. Even if dem no confirm say user funds loss, uncertainty about when service go restore and endpoint verification dey make bids remain conservative.
For long term, if CoW Swap restore services quick and credibly communicate fixes and monitoring, di impact fit fade. But DNS attacks dey reinforce bigger DeFi risk premium, so traders fit demand better spreads/liquidity terms before dem go treat COW as fully back to normal.