| value |
{"aggregator_url":"https://news.bitcoi {"aggregator_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","as_of":"2026-04-14T20:20:10.540405+00:00","canonical_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","enrichment":{"aggregator_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","article_chars":2673,"article_truncated":false,"blocked_reason":null,"candidate_id":"sc_0d9508c7a1a5fcf3","canonical_host":"news.bitcoin.com","canonical_is_aggregator":false,"canonical_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","content_type":"text/html; charset=utf-8","enriched_at":"2026-04-15T17:31:43.780752+00:00","extraction_method":"trafilatura","fetched_description":"Cow Swap paused its protocol April 14 after a DNS hijack at swap.cow.fi. Users should revoke approvals made after 14:54 UTC immediately.","fetched_title":"Cow Protocol Halts Trading After Frontend Domain Hijack \u2013 Bitcoin News","final_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","html_truncated":true,"paywall_likely":false,"publisher_domain":"news.bitcoin.com","publisher_resolution":"canonical_url","requested_url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/","source_event_id":"evt_fcd919bd9e21","source_quality":"high","status_code":200,"version":"signal_enrichment_v2"},"fp":"b67dfc357f22983c","kind":"crypto_extremes","published_at":"2026-04-14T18:51:39+00:00","publisher_domain":"news.bitcoin.com","signal_understanding":{"analysis_basis":"article","claim_confidence":0.78,"dates_mentioned":["2026-04-14"],"entities":[{"asset_class":"crypto_defi","name":"Cow Swap","relevance":"high","symbol":"","type":"platform"},{"asset_class":"crypto_defi","name":"Cow Protocol","relevance":"high","symbol":"","type":"protocol"},{"asset_class":"crypto_defi","name":"Cow DAO","relevance":"high","symbol":"","type":"organization"},{"asset_class":"web","name":"swap.cow.fi","relevance":"high","symbol":"","type":"domain"},{"asset_class":"web","name":"cow.fi","relevance":"medium","symbol":"","type":"domain"},{"asset_class":"web3_tool","name":"revoke.cash","relevance":"medium","symbol":"","type":"tool"},{"asset_class":"security","name":"Blockaid","relevance":"medium","symbol":"","type":"security_tool"}],"event_type":"supply_disruption","information_gaps":["Whether the protocol was fully restored is not confirmed in the provided text.","No post-mortem details are provided in the text.","The article does not specify the exact mechanism by which DNS records were hijacked (e.g., registrar compromise method) beyond general description.","The text does not provide quantitative loss figures; it only states no large-scale confirmed losses were reported as of late afternoon UTC.","The article does not list specific transaction hashes or the number of suspicious transactions flagged by community members."],"key_facts":["Cow Swap is described as a decentralized exchange aggregator built on Cow Protocol.","The frontend at swap.cow.fi was hijacked via DNS at approximately 14:54 UTC on April 14, 2026.","Cow DAO paused Cow Protocol\u2019s APIs and backend as a precaution.","Cow DAO issued a public warning on X at roughly 15:41 UTC advising users to stop interacting with the site while investigating.","A follow-up post at 16:24 UTC stated the DNS hijacking was confirmed and that Cow Protocol\u2019s backend and APIs were not affected, while the team paused them anyway.","Users who interacted with swap.cow.fi after 14:54 UTC were advised to revoke approvals immediately using revoke.cash.","Cow DAO posted guidance at 16:33 UTC instructing affected users to revoke approvals granted after that time.","No confirmed contract-level losses were reported as of late afternoon UTC.","Community members flagged isolated suspicious transactions, but there was no evidence of a systemic drain affecting the broader protocol.","Security tool Blockaid flagged swap.cow.fi and related domains, including cow.fi, during the incident window.","The team continued monitoring through approximately 18:15 UTC and asked users with potentially affected transactions to submit transaction hashes for review.","As of the latest available information, the protocol remained paused and Cow DAO had not confirmed full restoration or released a post-mortem."],"numeric_claims":[{"label":"DNS hijack detection time (UTC)","value":"14:54 on 2026-04-14"},{"label":"Cow DAO warning time (UTC)","value":"~15:41 on 2026-04-14"},{"label":"Follow-up confirmation time (UTC)","value":"16:24 on 2026-04-14"},{"label":"Guidance post time (UTC)","value":"16:33 on 2026-04-14"},{"label":"Monitoring end time (UTC)","value":"~18:15 on 2026-04-14"}],"primary_claim":"Cow Swap/Cow DAO paused Cow Protocol\u2019s APIs and backend after a DNS hijack of swap.cow.fi detected at about 14:54 UTC on April 14, 2026.","relevance_score":0.86,"sentiment":"negative","source_quality":"high","summary":"Cow Swap paused Cow Protocol after attackers hijacked DNS records for its main frontend domain swap.cow.fi on April 14, 2026. Cow DAO also advised users who interacted with the site after 14:54 UTC to revoke approvals and reported no confirmed contract-level losses.","topics":["DNS hijacking","DeFi frontend compromise","protocol pause","token approval revocation","user safety guidance","incident monitoring"]},"source":"Bitcoin.com News","source_domain":"news.bitcoin.com","summary":"Cow Swap, a decentralized exchange aggregator built on Cow Protocol, paused its protocol Monday after attackers hijacked the DNS records for its main frontend at swap.cow.fi. Key Takeaways: Cow Swap\u2019s frontend at swap.cow.fi was hijacked via DNS at 14:54 UTC on April 14, 2026. Cow DAO paused Cow Protocol\u2019s APIs and backend as a precaution, [\u2026]","tickers":[],"title":"Cow Protocol Halts Trading After Frontend Domain Hijack","url":"https://news.bitcoin.com/cow-protocol-halts-trading-after-frontend-domain-hijack/"}... |