ChainBleedv0.1 · open intel
← back to feed·INFRASTRUCTURE2026-04-18 · 1mo ago
Incident · SLOWMIST

DNS registrar for eth.limo

DNS hijacking
Estimated loss
VERDICT —OUT OF SCOPE
Root cause is infrastructure (DNS / cloud / database / third-party API) compromise, not on-chain contract logic. Pre-deployment source review would not surface this; coverage lives in cloud-security + supply-chain audit, separate discipline.
▰ METHOD
INFRASTRUCTURE
INFRASTRUCTURE
Root cause

Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.

Forensic narrative

Vitalik Buterin stated on X that the DNS registrar for eth.limo has been attacked. He advised users to temporarily avoid accessing vitalik.eth.limo or any other eth.limo-related pages until official confirmation is given that the issue has been resolved and services are back to normal. Attack method (per SlowMist): DNS hijacking. Reported loss: -.

Primary source
https://x.com/VitalikButerin/status/2045413438659416215
Sourced from
slowmist
Technical record
chain
protocol
DNS registrar for eth.limo
bug_class
infrastructure
date_occurred
2026-04-18
loss_usd
source_id
sm:dns-registrar-for-eth-limo::2026-04-18
Related — same bug class· infrastructure
2026-04-18
1mo ago
Kelp DAO
Infrastructure-level attack
infrastructure
$293.00M
OUT OF SCOPE
2026-04-04
2mo ago
HypurrFi
Domain Hijacking
infrastructure
OUT OF SCOPE
2026-03-31
2mo ago
Steakhouse Financial
Social Engineering
infrastructure
OUT OF SCOPE
2026-03-19
2mo ago
Neutrl
DNS Hijacking
infrastructure
OUT OF SCOPE
2026-03-18
2mo ago
ETH
Neutrl
DNS Hijacking Attack
infrastructure
OUT OF SCOPE
2026-03-11
3mo ago
BONKfun
Social Engineering Attack➕Domain Hijacking➕Phishing
infrastructure
$30.0K
OUT OF SCOPE
ChainBleed — live web3 threat intelligence