Crypto platform Curve Finance has issued a critical warning to its users, advising them not to interact with the website following a domain name system (DNS) hijack incident. This malicious redirection aimed to steal user funds through a ‘frontend’ attack that targets user interfaces on websites. 3rd-party attackers exploited the issue by redirecting users to a cloned version of Curve Finance’s website designed to intercept their login information and steal wallet balances. The platform confirmed that its smart contracts remain safe, but the compromised domain now points to an incorrect IP address, leading to potential security risks. The company is actively working with the domain registrar to restore control over the DNS, while urging users to avoid any interaction until the issue is resolved.