Protocol-impersonator domain registered (typosquat)

Sushi (SushiSwap) — v2 + v3 + Trident + BentoBox/Kashi + SushiXSwap's assessment for RD-F-161 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Sushi is a top-20 DeFi brand with high impersonation-target profile. Structural typosquat risk is elevated: the brand name 'sushi' is short and commonly misspelled; primary domain is sushi.com (short, premium domain). WHOIS domain monitoring feed not available in static assessment — definitive absence of active typosquat cannot be confirmed without DomainTools equivalent. MISO 2021 supply-chain attack (frontend compromise) demonstrates that Sushi's web presence is a historically-targeted attack surface. Given protocol's brand recognition and frontend compromise history, yellow posture is warranted even without confirmed active typosquat.

Sources #

URL
SushiSwap's Token Launchpad Hacked for Over $3M in Ethereum — DecryptMISO 2021 supply-chain attack — frontend compromise via contractor injection; establishes web-surface as attack vectorretrieved 2026-05-17

Methodology #

Determine whether a typosquat of the official protocol domain has been registered in the last 90 days.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sushi factor RD-F-161 score yellow collected_at 2026-05-16 19:50:37