Skip to main content

Phishing & Fake Sites Icon

Phishing & Fake Sites

Phishing sites mimic legitimate platforms to steal credentials or trick you into signing malicious transactions.

Common Phishing Tactics

  • Typosquatting URLs: Domains like c0mpound.finance (zero instead of “o”).
  • DNS Hijacking: Compromising a DNS record to redirect users to a malicious site.
  • Cache Poisoning: Serving fake pages that appear genuine.

How to Protect Yourself

  1. Bookmark Official URLs: Always use saved links (e.g., https://app.compound.finance).
  2. Check SSL Certificates: Look for the padlock icon and valid domain in the browser address bar.
  3. Use Anti-Phishing Tools: Browser extensions like Wallet Guard block known phishing sites.
  4. Verify Links Manually: Hover over links in emails or social media before clicking.

Real-World Incident

On July 11, 2024, a DNS attack briefly redirected Compound’s website to a fake interface, highlighting the importance of multi-factor verification and community alerts.

Next Steps

Proceed to Malicious Smart Contracts to learn how to spot unsafe contract interactions.