eth.limo Gateway Briefly Hijacked in Social Engineering Attack

According to EasyDNS, attackers used social engineering to gain access to the eth.limo registrar account, briefly redirecting DNS settings for a gateway serving about 2 million .eth domains before access was restored.

ETH

ENS

41d ago

Summary

Ethereum Name Service gateway eth.limo was briefly hijacked through a social engineering attack targeting its domain registrar account. According to EasyDNS, attackers impersonated team members on April 17 and changed the domain’s nameservers to Cloudflare and Namecheap on April 18. EasyDNS said it restored account access at 7:49 a.m. ET. The affected wildcard DNS setup is used to resolve about 2 million .eth domains through the eth.limo gateway.

Terms & Concepts

Ethereum Name Service: A blockchain naming system that maps human-readable .eth names to crypto addresses, websites, and other onchain resources.
Social engineering: A manipulation technique that tricks people or service providers into granting access or revealing sensitive information.
DNS: The Domain Name System translates domain names into internet destinations; changing nameservers can redirect traffic or disrupt access.