defirisk.co
rubric v1.7.0

Mad Meerkat Finance (MM.Finance): DNS Hijack / Front-End Attack (Router Address Substitution)

Mad Meerkat Finance lost $2M to a DNS attack that silently swapped the router address in their front-end for 3 hours, rerouting 600+ user transactions to the attacker while Discord users raising red flags were ignored by the team.

Occurred 2022-05-04 Loss $2M Status closed

Summary #

Mad Meerkat Finance (MM.Finance) suffered a DEX / AMM on 2022-05-04, resulting in a loss of approximately $2M.

What happened #

Mad Meerkat Finance lost $2M to a DNS attack that silently swapped the router address in their front-end for 3 hours, rerouting 600+ user transactions to the attacker while Discord users raising red flags were ignored by the team.

Linked factors #

  • RD-F-007 — related : Bug bounty absent — baseline integrity gap [via dashboard_risk_factors/Bug bounty: Unknown]
  • RD-F-126 — causal : Is-a-fork-of (Cat 8 anchor) [via dashboard_risk_factors/Forked?: Yes — Cronos DEX fork (Uniswap V2-style)]