Coinmarketcap was hacked on Friday after a malicious popup appeared on its website, urging users to “check” their wallets.
The main dishes to remember:
- Coinmarketcap was hacked after a false portfolio verification popup appeared on its site, triggering phishing problems.
- Metamask and Phantom reported the site as dangerous, warning users against the connection of wallets.
- The violation has relaunched CoinmarketCap security criticism, almost four years after its major data.
The phishing style notification asked users to connect their portfolios and approve access to ERC-20 token, increasing immediate red flags through the cryptographic community.
Wallet suppliers like Metamask and Phantom quickly pointed out the site as dangerous, with Phantom displaying a browser warning against the use of the platform.
Coinmarketcap removes malicious popup
In an article on Friday on X, CoinmarketCap confirmed the withdrawal of the malicious popup. “We have identified and deleted the malicious code of our site,” said the platform.
The company added that it continued to study violation and strengthens its security measures to prevent similar incidents.
The malicious prompt, which sparked warnings from portfolios like Metamask and Phantom, would have asked users to connect their wallets and approve access to the ERC-20 tokens.
The extension of the Phantom browser even pointed out CoinmarketCap as “dangerous to use”, which raises concerns concerning the vulnerability of the platform.
The reports of the phishing attempt began to circulate on cryptographic social media, several users alerting others not to interact with the prompt.
Many suspected that the attack was an attempt to steal portfolio references through a false interface imitating a legitimate verification process.
The incident rekindled concerns about CoinmarketCap security, coming almost four years after a 2021 data violation exposed email addresses of more than 3.1 million users.
These data were then discovered for sale on the hacking forums, which aroused criticism of the platform guarantees.
Security alert
We see reports that @CoinmarketcapThe front-end was compromised and tries to encourage people to link their portfolios, probably to empty them. pic.twitter.com/a0jredspvs– Jameson LOPP (@lopp) June 20, 2025
Coinmarketcap, belonging to Binance, remains one of the most used resources in cryptographic space, making it a privileged target for malicious actors who seek to exploit its credibility.
Users are invited to avoid connecting portfolios to unsolicited prompts and check all interactions via official channels.
The company did not disclose the source of the violation but has embarked on the ongoing security examinations.
Crypto Crime becomes violent while illicit transactions exceed $ 40 billion in 2024
Illicit cryptocurrency activity increased to at least $ 40.9 billion in 2024, according to the analysis chain, the number likely to grow as portfolios linked to criminals are identified.
The hacks alone represented $ 2.2 billion in stolen assets, an increase of 21% compared to the previous year.
Groups linked to North Korea, including Lazarus and Tradetvoritor, were behind more than 60% of these flights, with major incidents such as the hacking of $ 300 million in Bitcoin DMM in Japan between their strokes.
But threats go beyond online exploits. Criminal groups use crypto to finance and hide a wider range of crimes – investment scams and improved Romanesque fraud in drug trafficking and even physical violence.
In an alarming case on May 13, 2025, the daughter and grandson of the CEO of Paymium were almost kidnapped in Paris by masked men.
Post CoinmarketCap pirated, rushes to eliminate the contextual portfolio verification window appeared first on Cryptonews.
