- CoinMarketCap removed a malicious popup from its website that asked users to verify their cryptocurrency wallets.
- The company confirmed it had taken out the harmful code and stated security investigations are ongoing.
- Users reported the popup was a phishing scam aiming to gain access to private keys or personal data.
- Wallet providers MetaMask and Phantom quickly flagged the incident and warned users.
- The event follows a past security breach at CoinMarketCap in 2021, which saw millions of email addresses leaked.
CoinMarketCap, a leading website for cryptocurrency price tracking, eliminated a malicious popup notification from its platform. The popup, which appeared on June 14, urged users to verify their cryptocurrency wallets, prompting concerns about user security.
The company announced Friday that it had “identified and removed the malicious code from our site” in response to the incident. CoinMarketCap added that its team continues to investigate and is taking steps to further secure the website.
Reports from cryptocurrency users described the popup as a phishing scam. One user stated that the notification “asks to connect wallet and then asks for approvals to ERC-20 tokens,” referring to digital assets on the Ethereum blockchain. ERC-20 token approvals can allow scammers access to users’ assets if granted.
During the attack, CoinMarketCap posted on its official X (formerly Twitter) account, warning users not to connect their wallets and confirming the company was working on fixing the issue. Additional warnings came from wallet providers. A user claimed that both MetaMask and Phantom—popular cryptocurrency wallet extensions—“red-flagged it.” At the time, the Phantom wallet extension advised users that the site was “unsafe to use.”
This phishing incident follows a previous hack of CoinMarketCap in October 2021. That data breach led to the exposure of over 3.1 million user email addresses, which later appeared for sale on Hacking forums, according to Have I Been Pwned, a data breach notification service.
CoinMarketCap has not shared further details on the latest event, but stated it is strengthening its security and continuing its investigation.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- Bitcoin Futures Premium Hits 3-Month Low Amid Bearish Derivatives
- Presearch Hosts Final AMA Webinar Before Wefunder Round Closes
- Bloomberg: 90%+ Odds SEC Approves XRP, SOL, ADA, DOGE, LTC ETFs
- Deutsche Bank, Memento Launch Tokenized Fund in Singapore Sandbox
- Reddit in Talks to Integrate World ID Iris Scanning Verification
