DeFi apps are under threat following a domain registry attack on July 11, with Compound Finance and Celer Network targeted. Security platform Blockaid believes the attacker is focusing on domain names provided by Squarespace, putting any DeFi app with a Squarespace domain at risk. The attack was first noticed when Compound's interface began redirecting to a malicious site equipped with a drainer app to steal users' tokens. Celer Network's domain monitoring system detected and intercepted the takeover attempt. Blockaid has warned that multiple DeFi front ends are at risk, with a list of potentially affected domains posted by DefiLlama's developer. MetaMask is attempting to warn users of possibly compromised apps.