VERDICT —OUT OF SCOPE
Root cause is infrastructure (DNS / cloud / database / third-party API) compromise, not on-chain contract logic. Pre-deployment source review would not surface this; coverage lives in cloud-security + supply-chain audit, separate discipline.
▰ METHOD
INFRASTRUCTURE
INFRASTRUCTURE
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
On October 10th, the BRC20 exchange platform Ordswap issued a tweet, stating that they had lost control of their website domain, and the issue appeared to be related to the website development and hosting company Netlify. They advised users not to access their website until they regained control of the domain. Ordswap users reported that the compromised website was redirecting users to phishing links. Attack method (per SlowMist): DNS Hijacking Attack. Reported loss: -.
Primary source
https://twitter.com/ordswap/status/1711444650823713181 ↗Sourced from
slowmist
Technical record
- chain
- —
- protocol
- Ordswap
- bug_class
- infrastructure
- date_occurred
- 2023-10-10
- loss_usd
- —
- source_id
- sm:ordswap::2023-10-10
Related — same bug class· infrastructure