A few organizations that have their domain hosted in Squarespace have unfazed hijack of their websites.
The hijacked domains belong to former Google Domains customers that had not set up new accounts with Squarespace that was sold by Google last year following its shutdown announcement.
The domain hijacks took place between July 9 and 12 and targeted cryptocurrency and DeFi businesses, including Celer Network Foundation, Compound Lab, Pendle Labs. and Unstoppable Domains, the last crypto domain name and wallet address registrar.
It’s alleged that Squarespace never accounted for the possibility that a threat actor may sign up for an account using an email associated with one of the domains. With no MFA in place or password required, it was as simple as registering using an email linked to one of the domains to hijack it.
At least some of the companies that have had their domain hijacked have managed to get them returned. Both Celer and Pendle said they recovered their domains. The latter emphasized that no cryptocurrency assets had been compromised as a result of the intrusion
