Ordswap urges users to recover keys after losing control of website

Ordswap, a marketplace that allows users to register, auction and trade Bitcoin serial numbers, devised a way for users to retrieve their private keys as they scramble to regain control of their website domains.

In an October 10 (Twitter) post, the Ordswap X account shared an online tool designed to help users who logged into the site through MetaMask recover their Ordswap private keys, allowing them to transfer to other providers.

The source from which the meta-masked user obtains the key can now be provided below. You can import (hex) to Unisat. https://t.co/NGaaLiNNwW

— Ordswap (@ordswap) October 10, 2023

A few hours ago, on October 9, Ordswap issued a stern warning, warning users not to connect to its domain as it has no control over it. It blamed the problem on website development and hosting company Netlify.

We’re working on releasing the source code for metamask users so they can get the keys if they don’t already have them. This issue appears to be related to Netlify, but we are still working on it. https://t.co/uYGxJkzGfj

— Ordswap (@ordswap) October 9, 2023

On the project’s Discord server, a member of the Ordswap team and users reported that the site at one point featured a button prompting users to connect their crypto wallets, in an apparent attempt to deceive users.

An X user report This button is a wallet scammer – an increasingly popular tool used by cryptocurrency scammers. At the time of writing, Ordswap’s website automatically redirects to the competing marketplace RelayX.

An Ordswap team member on Discord claimed that the project did not have an impact on user private keys or assets due to the leak, but if new users interact with the site, they may be compromised.

*Ordswap support team member “Bitkorn” claimed that the project has not found that user assets have been affected by website leaks.Source: Discord*

related: FTX hackers may use SBF experiment as smokescreen: CertiK

In late September, the website of Ethereum-based automated market maker Balancer was compromised in a seemingly similar attack, with attackers stealing approximately $240,000 worth of funds.

Balancer later said it believed attackers had carried out a social engineering attack on its DNS service provider EuroDNS, allowing attackers to enter prompts to trick users into approving malicious contracts that drained their wallets.

Magazine: NFT Collector: A Gothic VR Dream of Giant Swans…A Royal Nightmare on OpenSea