According to ChainCatcher, the liquidity pledge protocol Kelp DAO reviewed the previous security incident: At 22:30 on July 22, Kelp's dApp began to show malicious wallet activity transactions in an attempt to steal user funds. The Kelp team responded immediately, locked the domain name server, restored ownership access, and resolved the problem.

The attacker successfully persuaded GoDaddy's customer support to bypass 2-FA by impersonating the Kelp team. The Kelp team is taking preventive measures, including transferring to another domain name registrar and strengthening alerts for abnormal UI behavior. A small number of users have reported losing funds due to UI attacks, and the Kelp team is providing support.