Eth.limo, a Web2 gateway that enables ENS domains to be accessed over HTTPS, suffered a domain hijack on April 17, 2026. An attacker impersonated a team member and successfully tricked the DNS registrar EasyDNS into carrying out a fraudulent account recovery request.

The attacker then redirected the nameservers as part of a phishing campaign attempt, however, the attack was effectively contained, with resolvers returning SERVFAIL responses, thanks to DNSSEC. EasyDNS regained control of the account and reversed the malicious nameserver changes within eight hours of the incident. EasyDNS CEO Mark Jeftovic publicly apologized for the incident. Eth.limo says it plans to migrate to Domainsure, which eliminates account recovery options.

EarnUSD is a stablecoin vault by Lido for earning transparent, onchain USD-denominated rewards. Get started today at stake.lido.fi/earn

Disclaimer: Content is for informational purposes only, not endorsement or investment advice. The accuracy of information is not guaranteed.