This week, a significant security incident emerged on CoinMarketCap’s platform as users were confronted with a fraudulent popup asking them to “Verify Wallet.” The alarming notice first made its appearance on a Friday, triggering concerns that malicious actors had managed to infiltrate the site. In a swift response, CoinMarketCap announced within three hours that the harmful script had been eradicated and that a thorough investigation of their security measures was underway.
Fraudulent Popup Exposes Vulnerability
In a communication shared via their official account on social media, CoinMarketCap clarified that the popup was not part of any regular update. User reports indicated that the alert prompted visitors to connect their wallets and approve transactions involving ERC‑20 tokens. Such manipulative prompts can lead to wallet theft or unauthorized transfers if unsuspecting users comply. The platform advised users to refrain from connecting their wallets until the situation had been thoroughly addressed.
Update: We have identified the malware and taken it off our site.
Our team is actively probing further and enhancing our security protocols.
— CoinMarketCap (@CoinMarketCap) June 21, 2025
Crypto Wallet Extensions Respond
MetaMask and Phantom, two widely-used crypto wallet extensions, promptly flagged the affected page as untrustworthy. Immediate alerts displayed warnings that the site was “unsafe to use,” likely preventing many users from succumbing to the deceit. Both wallet extensions perform routine checks for suspicious code, an essential feature that contributed to minimizing risk.
Potential Risk to User Accounts
Reports from the cryptocurrency community revealed that the popup sought approvals that could allow malicious actors to gain control over assets stored in users’ wallets. Phishing scams like this thrive on victim manipulation, enticing them to provide sensitive information or unwittingly authorize transactions. CoinMarketCap’s prompt action contained the threat, but it highlights a broader concern about the security of even reputable platforms.
History of Security Issues
This incident marks another chapter in CoinMarketCap’s history of security concerns. In October 2021, a significant breach led to the theft of over 3 million email addresses, which later surfaced on various hacking forums, raising alarm within the community. As security threats evolve, the injection of harmful code signifies an unsettling shift in tactics employed by cybercriminals.
Demands for Robust Security Measures
CoinMarketCap has committed to further investigations and enhancements of its security protocols. While a detailed timeline for the ongoing audit has not been shared, users are encouraged to remain vigilant for updates across various communication platforms. Security experts recommend implementing measures like multi-factor authentication for code changes and conducting frequent scans to identify injected scripts to mitigate vulnerabilities.
Safety Tips for Cryptocurrency Users
Experts advise that users should approach unexpected “connect wallet” prompts with a high level of caution, even from trusted platforms. Utilizing hardware wallets or browser extensions that transparently display requested permissions can alert users to suspicious activities. Keeping both browser and wallet applications updated is equally critical. In the fast-evolving realm of cryptocurrency, maintaining personal vigilance is one of the most effective protective strategies.
Image source from Bleeping Computer, with data from TradingView
