Olivia
Online
fp
@supas0y
Gib me all of da coins.
smol-follow-smol
curvancian-follow-curvancian
$MAGIC wasn't the one, what is?
$LINEA
Treasure Island
Joined December 2020
1.2K Following
336 Followers
3.2K Posts
The domain hijacking incident has been fully resolved and control has been restored.
The Curvance official domain, https://t.co/hQpt6Rqf4q, is secure and safe to use.
Please note that users connecting via OKX or Coinbase wallets may still encounter a blocker. Our team is actively working with the relevant providers to resolve this and remove the restriction as soon as possible. We appreciate your patience and will share updates as they become available.
A full post-mortem is provided below.
Summary
On February 16, 2026, Curvance experienced a domain registrar hijacking incident as part of a broader, coordinated infrastructure attack impacting multiple protocols across the industry.
At approximately 4:36am EST, the Curvance domain registrar account was compromised through a social engineering attack targeting GoDaddy support. The attacker obtained registrar-level control of the domain and redirected traffic to a malicious front end during the exposure window.
It is important to be clear: this was an off-chain, domain-level incident. Protocol funds remain secure and smart contracts were not impacted at any time.
Approximate Detection & Response Timeline (EST)
Feb 16, 2026
• 4:36am — Unauthorized changes to nameservers occurred following social engineering of the domain registrar’s support channels.
• 6:18am — Incident detected by @blockaid_ monitoring systems
• 6:48am — First unauthorized domain taken offline and containment actions initiated by @SEAL_911
• 12:21pm — A second unauthorized domain was created while domain registrar control was still in process of being recovered.
Feb 17, 2026
• 3:17am — GoDaddy locked the domain registrar account, preventing any additional unauthorized changes while control was being restored. However, the second and final unauthorized domain still remained active.
• 7:01pm — Final unauthorized domain taken offline with assistance from @ChainPatrol
Feb 20, 2026
• 6:19pm — Full control of the domain registrar account was successfully restored.
We were informed that the registrar was experiencing a significant spike in similar domain security incidents during this period, resulting in elevated support backlog and extended recovery timelines.
Upon detection, we coordinated with @blockaid_, @SEAL_911, and @ChainPatrol to assess exposure, halt traffic, and prevent further interaction with the malicious endpoint. Their rapid escalation materially reduced potential user impact during the exposure window.
Scope of Impact
The incident was limited strictly to the domain registrar layer. There was never a breach of smart contracts, protocol funds remained secure at all times, and Curvance internal systems and accounts were not compromised.
Any potential losses are strictly isolated to users who directly interacted with the compromised domain during the exposure window. If you believe you may have been impacted, please create a support ticket in the Curvance Discord so our team can review your case and assist directly.
Preliminary investigation indicates the attacker bypassed GoDaddy verification controls through support channel manipulation.
Hardening Measures
In response, and following recommendations from @SEAL_911, we are upgrading our domain infrastructure by transferring the Curvance domain to an institutional-grade registrar utilized by Fortune 500 companies, thereby reducing exposure to retail support channels.
Industry Coordination
Following this incident, we conducted research and outreach to several protocols who shared similar registrar exposure and have proactively engaged them to serve as a resource in strengthening and hardening their domain infrastructure.
Closing Statement
We take infrastructure and user security extremely seriously. Our monitoring, response procedures, and security partnerships enabled rapid detection and containment, significantly limiting the exposure window.
We extend our sincere thanks to @blockaid_, @SEAL_911, and @ChainPatrol for their immediate detection, coordination, and hands-on support during containment.
We will continue to provide updates as additional hardening measures are finalized.
@Here4AlphaOnly Ofc boomers get richer and everyone else fighting for scraps.
Some recap thoughts from our Curvance spaces with Upshift and @consensus128 this morning:
- It's clear that the industry as a whole is maturing at such a rapid pace, that many projects in 2025 got washed out when the tide pulled back. Now we're seeing the aftermath of this, and only the strong will rise from the ashes.
- Users as well as institutions have a strong appetite for simple, curated DeFi solutions that are secure and easy to use with no frills, where they can have guaranteed yield and little to no risk or downside.
- dApps that can eliminate friction for new users will be clear winners. Give people a Robinhood or Fidelity front-end to reduce complexity, and let the magic happen on the back end.
- The space is also hungry for new and exciting protocols like Curvance, strategy vaults like Upshift, and stables from Agora that will pave the wave in 2026 and beyond. 💫
Day 13 of why you need to use Jupiter Mobile:
FIND AIRDROPS YOU DIDN’T KNOW YOU HAD
When you import your wallet to Jupiter Mobile, you’ll find airdrops you didn’t even know you had.
Active DeFi users and traders often receive airdrops from protocols without even being aware. Jupiter Mobile shows you this instantly:
- Step 1. Download @jup_mobile
- Step 2. Import your wallet
- Step 3. Check your DeFi positions, click ‘yield’ and then ‘airdrop checker’
- Step 4. Jump straight to claim links
On top of that, the same @jup_portfolio view gives you: all your holdings tracked across 160+ protocols (including staked bags you forgot about), true net worth + real PnL, and estimated yields across your DeFi positions.
Just Use Jupiter (Mobile).
@TedPillows What ruling is better for the market? Short n long term?
https://t.co/tniqkfd2cd
@CVEIntern Road to 1 Billy
@OttoSuwen Down only 50% means u rich
@gokuxson feels like they're going this route where they keep building security, maybe they have a plan to bring in some big players.. who knows
what is happening to that 200m sharplink is deploying?
@patron4eg Respect for replying man.
I kept my entire airdrop + am up on nile > rex migration so it's all house money, not a flex but giving a reason why I haven't left yet. Their big product is $mask and $musd but are self sabotaging with vague communications and lack of transparency.
@DeclanFox14 What happened to the 200m deployed by sharplink Declan?
We’re excited to announce our partnership with @0xFastLane, bringing their high-performance LST directly into the Curvance ecosystem on Monad Mainnet.
FastLane’s LST is engineered for deep liquidity, smooth integrations, and seamless composability, making it a perfect fit for Curvance’s hyper-efficient lending markets.
With FastLane joining our supported assets, users gain access to new strategies, elevated capital efficiency, and expanded yield opportunities from day one.
Most Popular Users
Elon Musk 
@elonmusk
240.5M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.4M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
72.9M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.7M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.6M followers