Ordswap Takes Action Amid Domain Security Concerns

Ordswap, a marketplace where users can inscribe, auction, and trade Bitcoin Ordinals, has devised a method for users to retrieve their private keys as it attempts to regain control of its website domain.

In a 10 October X (Twitter) post, the Ordswap X account shared an online tool that purports to assist users who logged into the site via MetaMask recover their Ordswap private keys, allowing them to switch to alternative providers.

On October 9, hours earlier, Ordswap warned users not to connect to its domain because it was not controlled. It implicated Netlify, a website development and hosting company.

On the project’s Discord server, a member of the Ordswap team and users reported that for a time, the website displayed an icon urging users to connect their cryptocurrency wallet in an apparent phishing attempt.

One user of X reported that the icon was a wallet drainer, a tool increasingly utilized by crypto scammers.

At the time of writing, Ordswap’s website redirected automatically to RelayX, a competing marketplace.

A member of the Ordswap team stated on Discord that the project had not experienced any impact on user private keys or assets as a result of the intrusion but that users could be compromised if they interact with the site.

Late in September, the website for the Ethereum-based automated market maker Balancer was compromised in what appeared to be a similar attack, and approximately $240,000 worth of funds were stolen.

Balancer later stated that it believes the exploiters conducted a social engineering attack on its DNS service provider, EuroDNS, which allowed attackers to input a prompt to trick users into authorizing a contract that drains their wallet.