← Back to News
Vitalik Buterin Warns of eth.limo DNS Hijack; P2P Merchants Advised Caution
P2P MarketsNeutral3 min readApril 18, 2026BeInCrypto

Vitalik Buterin Warns of eth.limo DNS Hijack; P2P Merchants Advised Caution

A DNS registrar attack on the popular ENS gateway eth.limo has led to a warning from Vitalik Buterin, potentially impacting user access to decentralized websites. This incident highlights a critical vulnerability in Web3 infrastructure, reminding P2P merchants of the importance of secure access points.

Ethereum co-founder Vitalik Buterin issued a stark warning to users on April 18th, advising them to cease visiting any eth.limo URLs. The popular Ethereum Name Service (ENS) gateway suffered a DNS registrar attack, allowing an attacker to gain control of the domain and redirect traffic. This compromise means visitors could be exposed to phishing pages or malware, underscoring the risks associated with centralized points of failure in decentralized systems.

The eth.limo team confirmed the hijack, stating they are actively working with all parties to resolve the issue. Eth.limo serves as a crucial bridge, translating ENS names into standard HTTPS URLs for easier access via web browsers without requiring users to run IPFS nodes. The attack, however, exploited a vulnerability in the domain registrar, not the underlying ENS or IPFS infrastructure, which remained secure.

For P2P trading merchants operating on platforms like Binance P2P and Bybit P2P, this incident serves as a potent reminder of the interconnectedness of the crypto ecosystem and the potential for disruptions. While this specific attack doesn't directly target P2P trading operations or stablecoin liquidity, it highlights the broader security landscape. Merchants rely on stable and accessible online environments to conduct their business, and any event that erodes trust or creates uncertainty in the broader crypto space can indirectly affect trading volumes and spreads.

Phishing losses in the crypto space have been significant, with frontend hijacks becoming a more prevalent attack vector. While no user fund losses have been confirmed in this particular eth.limo incident, the potential for such attacks underscores the need for vigilance. P2P merchants should remain cautious about the platforms and tools they use, ensuring they are accessing them through secure and verified channels, and always prioritizing the safety of their own and their clients' funds.

Until the eth.limo team issues an all-clear, users, including those in the P2P trading community, should continue to avoid all *.eth.limo URLs to mitigate any potential risks. This event emphasizes the ongoing need for robust security measures across all layers of the Web3 infrastructure.