Curve Finance Hacked: $1M Crypto Airdrop Scam Shocks DeFi!
Curve Finance’s X account hacked, pushing a fake $1M CRV airdrop. Founder warns: don’t click links! Is your wallet safe?
Curve Finance X Hack: Fake Airdrop Sparks Chaos
On May 5, 2025, Curve Finance, a leading DeFi protocol, suffered a major security breach when its X account was hacked. The attacker posted a fraudulent link promising a $1 million CRV token airdrop, urging users to connect their wallets. Founder Michael Egorov (
@newmichwill
) quickly warned the community, confirming the hack and advising users to avoid all links. The malicious site risked draining wallets via fake smart contract approvals, with potential losses in the thousands, though exact figures are unconfirmed.What Happened?
The hacked account posted about a nonexistent “Curve Reward Foundation” and a CRV airdrop, despite all CRV tokens being fully distributed with a fixed 3.03 billion supply. The posts, deleted after 30 minutes, led to a scam page requesting wallet connections. On-chain investigators urged users to revoke permissions if they interacted, as the Ethereum-based scam could exploit test transactions. Egorov noted the account was compromised silently, with no other systems affected. The team regained control within an hour with X’s support.
The hacked account posted about a nonexistent “Curve Reward Foundation” and a CRV airdrop, despite all CRV tokens being fully distributed with a fixed 3.03 billion supply. The posts, deleted after 30 minutes, led to a scam page requesting wallet connections. On-chain investigators urged users to revoke permissions if they interacted, as the Ethereum-based scam could exploit test transactions. Egorov noted the account was compromised silently, with no other systems affected. The team regained control within an hour with X’s support.
Why It Matters
This hack highlights the persistent risks in DeFi, where social media breaches can trick users into losing funds. For new investors, it’s a reminder to verify claims and avoid unverified links—nobody gives away free crypto. Curve’s CRV token, trading near a three-month high, held steady, but past hacks, like 2023’s $62 million exploit, show the stakes. Stronger security, like two-factor authentication, is crucial for projects and users alike.
This hack highlights the persistent risks in DeFi, where social media breaches can trick users into losing funds. For new investors, it’s a reminder to verify claims and avoid unverified links—nobody gives away free crypto. Curve’s CRV token, trading near a three-month high, held steady, but past hacks, like 2023’s $62 million exploit, show the stakes. Stronger security, like two-factor authentication, is crucial for projects and users alike.
What’s Next?
Curve is investigating and urging users to report if blocked during the hack. Stay cautious, double-check sources, and use secure wallets.
Curve is investigating and urging users to report if blocked during the hack. Stay cautious, double-check sources, and use secure wallets.
What’s your take on this DeFi scare? Comment below and follow trafy.io for more crypto alerts!
NOTICE:
The information provided on trafy.io does not constitute investment advice or recommendations. All investment and trading activities involve risks, and readers are advised to conduct their own research before making decisions.
NOTICE:
The information provided on trafy.io does not constitute investment advice or recommendations. All investment and trading activities involve risks, and readers are advised to conduct their own research before making decisions.
