DeFi lending protocol HypurrFi issued an emergency security alert this Friday, confirming that its official website domain has been compromised. Project founder androolloyd issued a stern warning to users via X (formerly Twitter): "Do not use the Hypurr.fi domain; it has been compromised."
According to data from DefiLlama, HypurrFi currently holds a total value locked (TVL) of approximately $30 million. The protocol is built on HyperEVM, a high-performance, EVM-compatible blockchain launched by Hyperliquid, primarily serving perpetual contract trading.
Security Risks of Domain Hijacking
Although the domain is currently hijacked, the HypurrFi team stated that their social media accounts remain under their control. The team explicitly advised users: "Please do not interact with the application until further notice from the team."
While the team has not yet reported any loss of user funds and emphasized that no direct threats to capital have been detected, domain hijacking remains a highly destructive attack vector in the cryptocurrency industry.
Such attacks often bypass the security audits of smart contracts by targeting the front-end interface directly. Attackers typically take over a project's official website and deploy malicious code or fake wallet connectors to trick users into signing malicious transactions, thereby stealing their digital assets.
Security incidents of this nature have become increasingly frequent in the crypto space. Just last month, the official domain for BONKfun suffered a similar hijacking. Security experts advise users to remain highly vigilant when accessing DeFi protocols, verify domain security through official social media channels, and avoid connecting their wallets without prior confirmation.
