Ordswap, a marketplace known for its services related to Bitcoin Ordinals, has come up with a solution for users to retrieve their private keys as the company faces a challenge in regaining control over its website domain. The platform recently shared a tool on social media that claims to assist users who logged into the website through MetaMask in recovering their Ordswap private keys, enabling them to transition to other providers.
On October 10, the official Ordswap Twitter account shared a post providing a source for MetaMask users to obtain their keys. In the tweet, the platform mentioned that users can import the keys in hexadecimal format to Unisat. The tweet included two links, which were intended to guide users through the process.
This development came after Ordswap issued a warning on October 9, urging users not to connect to its domain as the company had lost control over it. Ordswap attributed the issue to Netlify, a website development and hosting firm. The platform posted the warning on Twitter, stating that they were working on finding a solution for MetaMask users to retrieve their keys, emphasizing that the problem seemed to be with Netlify and that they were actively working on resolving it.
Furthermore, on the project’s Discord server, both team members and users reported that, for a period of time, the Ordswap website featured a button prompting users to connect their crypto wallets. However, it turned out that this button was a deceptive element, commonly known as a wallet drainer, used by scammers in the crypto space to deceive unsuspecting users. At the time this article was written, Ordswap’s website automatically redirected users to RelayX, a competing marketplace.
Despite the breach and the deceptive button, an Ordswap team member on Discord claimed that they had not observed any impact on user private keys or assets. However, they did caution that user compromise could occur if they interacted with the compromised website.
This incident bears similarities to a previous attack in late September, when the website of Balancer, an Ethereum-based automated market maker, was compromised. The attackers managed to steal around $240,000 worth of funds. Balancer later stated that the exploiters utilized a social engineering attack on their DNS service provider, EuroDNS. This allowed the attackers to manipulate a prompt, tricking users into approving a malicious contract that drained their wallets.
It is crucial for users to maintain caution when interacting with cryptocurrency platforms. Incidents like these highlight the importance of robust security measures and the need for users to stay vigilant to protect their assets in the rapidly evolving crypto landscape.
In conclusion, Ordswap has taken steps to assist users in recovering their private keys amidst a domain control issue. By providing a tool for MetaMask users, the platform aims to streamline the process of shifting to other providers. The company has identified the root cause of the problem as Netlify and is actively working to resolve it. As incidents of scams and breaches persist in the cryptocurrency realm, users must prioritize their security and exercise caution when interacting with online platforms.