複合金融網站域名遭攻擊後恢復，智能合約不受影響

作為加密貨幣社區的一個令人不安的消息，當網站恢復後，消息變得令人愉快，Compound Labs 的官方網站

Crypto investigator ZachXBT alerted people to avoid the official Compound Finance website, claiming that the domain had been compromised.

加密貨幣調查員 ZachXBT 提醒人們避開複合金融官方網站，聲稱該網域已外洩。

On the 11th of July, the security investigator shared a post in his telegram channel popular among the community members and asked people not to visit the website as it was redirecting to a newly created phishing site which posed a threat to the security of the users’ accounts.

7月11日，安全調查員在他的telegram頻道上分享了一條深受社區成員歡迎的帖子，並要求人們不要訪問該網站，因為該網站正在重定向到一個新創建的釣魚網站，這對用戶的安全構成了威脅。

The investigator also shared a screenshot of the phishing site which was created on the same day and had managed to garner a total of 13 visitors so far.

調查人員還分享了該釣魚網站的螢幕截圖，該網站於同一天創建，迄今為止已成功吸引了 13 名訪客。

The phishing site was designed to look like the official Compound Finance website and had a URL that differed from the original by only a few characters. Upon visiting the site, users were prompted to connect their Web3 wallets. If they did so, their crypto assets would have been drained by the attackers.

這個網路釣魚網站的設計看起來像複合金融官方網站，並且其 URL 與原始網站僅存在幾個字元的差異。造訪網站後，系統會提示使用者連接他們的 Web3 錢包。如果他們這樣做，他們的加密資產就會被攻擊者耗盡。

The original post by ZachXBT read:

ZachXBT 的原始貼文內容如下：

“Don't go to the official Compound Finance website. It's redirecting to a new phishing site (13 visitors). Screenshot below.”

「不要去複合金融官方網站。它正在重定向到一個新的網路釣魚網站（13 位訪客）。截圖如下。

After being alerted about the domain attack, the Compound Finance team took swift action and asked the users to stay away from the site and not click on any of the links related to the site until further notice.

在收到有關域名攻擊的警報後，Compound Finance 團隊迅速採取行動，要求用戶遠離該網站，不要點擊任何與該網站相關的鏈接，直至另行通知。

The team also stated that the attack was not on the protocol or smart contract layer and that the smart contracts were still intact.

團隊也表示，攻擊並非針對協定或智慧合約層，智能合約仍然完好無損。

This is important because it means the fundamental parts of the Compound protocol as well as its security features are preserved.

這很重要，因為這意味著複合協議的基本部分及其安全功能都被保留。

“That is not at the protocol level; the smart contracts are still intact,” the team stated.

“這不是協議層面的問題；而是協議層面的問題。”智能合約仍然完好無損，」該團隊表示。

To ensure safety, users are advised to restart their browsers and verify the URL before visiting and only click on the genuine URLs.

為確保安全，建議使用者在造訪前重新啟動瀏覽器並驗證網址，僅點擊真實網址。

Compound Labs has promised to provide further details on the investigation soon.

複合實驗室已承諾很快提供有關調查的進一步細節。