BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Cointelegraph, CoinMarketCap Hit by Malicious Wallet Pop-Up Attacks

  • Cointelegraph and CoinMarketCap both suffered front-end security breaches in late June.
  • Attackers used fake pop-ups to trick users into connecting their crypto wallets, putting funds at risk.
  • The incidents involved deceptive ads and malicious JavaScript code to trigger wallet-draining schemes.
  • Cointelegraph and security firm Scam Sniffer confirmed that user assets could be stolen if wallets were connected.
  • Former Binance CEO Changpeng Zhao reported losses totaling $18,570 from the CoinMarketCap incident, highlighting a trend in targeting crypto information sites.

On June 22, Cointelegraph confirmed a security breach that exposed users to a fraudulent pop-up on its website. The pop-up asked visitors to connect their crypto wallets, which could allow attackers to access and drain funds. The breach affected the front end of the site, with scammers promoting a fake Cointelegraph token (CTG) and an unauthorized initial coin offering (ICO).

- Advertisement -

Blockchain security platform Scam Sniffer first identified the compromise, reporting that attackers tried to trick users into granting wallet access. The group traced the issue to a JavaScript payload hidden in an advertisement banner, originating from a domain similar to known ad services. Cointelegraph responded in a public statement, advising users not to interact with pop-ups offering “CTG tokens” or advertising Cointelegraph ICO airdrops.

“Our security team identified a vulnerability related to a doodle image displayed on our homepage. This doodle image contained a link that triggered malicious code through an API call, resulting in an unexpected pop-up for some users when visited our homepage,” CoinMarketCap shared on social media after dealing with a similar attack on June 20. That incident involved a fake wallet prompt caused by a malicious script embedded in a doodle image. The company stated that the vulnerability temporarily disrupted the site’s homepage before it was resolved.

Both incidents used nearly identical tactics: inserting deceptive pop-ups using malicious JavaScript code delivered via site advertisements. Attackers attempted to trick users into connecting their wallets to fraudulent services, putting user funds in danger. This method relies on exploiting ad infrastructures and injecting unauthorized code.

Former Binance CEO Changpeng Zhao noted on social media that 39 people were affected in the CoinMarketCap breach, with combined losses of $18,570. He called attention to a pattern of attackers targeting crypto information websites with wallet-draining Scams. Zhao advised users to avoid interacting with unfamiliar decentralized applications (dApps) and to monitor wallet activity closely to reduce risk.

- Advertisement -

These coordinated attacks underline the importance of vigilance among crypto users, who should avoid connecting their wallets to suspicious prompts and verify all platform communications. Both Cointelegraph and CoinMarketCap are continuing to investigate and remove any remaining security threats.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Brazilian Banking Trojan Ousaban Targets Iberian Banks

A Brazilian banking trojan named Ousaban is actively targeting Windows users in Spain and...

Sell Amazon Stock Now? Analysts Mostly Say Hold

Amazon (AMZN) closed at $238.34 on June 30, trading near the lower end of...

Palantir CEO Slams OpenAI, Anthropic Over Client IP Security

Palantir CEO Alex Karp criticized rivals like OpenAI and Anthropic for lacking intellectual property...

Big Firms Launch New Stablecoin, Erase $3.3B From Rival Circle

A massive new stablecoin called Open USD (OUSD) launched yesterday, backed by a consortium...

Microsoft Accelerates Quantum Encryption Shift to 2029

Microsoft accelerates its quantum-safe roadmap, targeting 2029 for migrating key services to post-quantum cryptography...

Must Read

10 Best Crypto to Mine Without Special Hardware Equipment

A lot of people mostly think that it takes a difficult process to mine cryptocurrency. today we are going to show you some of...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading