MARCH 2021




"PancakeSwap is a decentralized exchange (DEX) on the Binance Smart Chain (BSC), which uses permission less liquidity pools run by algorithms. This creates what is known as an automated market maker (AMM)."


"Earlier today, a similar service called Cream Finance said its DNS (domain name service) had been "compromised by a third party." PancakeSwap’s Twitter account then confirmed that it had been attacked through the same mechanism."


"Your funds are only at risk if you enter your private key or seed phrase into the hijacked site." "DO NOT go to the Pancakeswap site until we confirm it is all clear. NEVER EVER input your seed phrase or private keys on a website."


"We have regained access to the DNS. Some users might still be affected, depending on their DNS resolution as some propagation time may be needed."

PancakeSwap runs a decentralized exchange platform. However, most users interacting with it use a central website.


This website was compromised through DNS, meaning that the domain name redirected traffic to a different server run by the attacker. According to information from Cream Finance, the attack was performed by compromising GoDaddy.


The attacker put up a website which attempted to trick users into providing their private key information. It's not known how many users fell for this.


In general, most users are educated against entering their seed phrase on any website, DNS hijacking incidents are relatively rare, and only a small portion of platform users would interact with the platform site while the event happens.


This type of situation is likely best dealt with through education for users, better training for platform operators regarding the proper domain name security, and having a fund set up to assist users in case of loss events.


Check Our Framework For Safe Secure Exchange Platforms

Sources And Further Reading

 For questions or enquiries, email info@quadrigainitiative.com.

Get Social

  • email
  • reddit
  • telegram
  • Twitter

© 2021 Quadriga Initiative. Your use of this site/service accepts the Terms of Use and Privacy Policy. This site is not associated with Ernst & Young, Miller Thompson, or the Official Committee of Affected Users. Hosted in Canada by HosterBox.