{"id":44779,"date":"2025-06-21T09:56:58","date_gmt":"2025-06-21T06:56:58","guid":{"rendered":"https:\/\/coinengineer.net\/blog\/?p=44779"},"modified":"2025-06-21T09:56:58","modified_gmt":"2025-06-21T06:56:58","slug":"coinmarketcap-removed-malicious-code-threatening-crypto-wallets","status":"publish","type":"post","link":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/","title":{"rendered":"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0"},"content":{"rendered":"<p><span data-contrast=\"auto\">The popular crypto tracking platform <strong>CoinMarketCap<\/strong> recently faced a significant security issue. When users accessed the site, they encountered a \u201cVerify Wallet\u201d <strong>pop-up<\/strong> on the screen. This message was a fake verification prompt asking users to connect their wallets. The platform quickly identified the attack and removed the malicious code from the system within three hours.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Initially, users and community members reported the incident on social media. A user named <strong>\u201cJet\u201d<\/strong> issued a warning on X. Soon after, MetaMask and Phantom wallets flagged <strong>CoinMarketCap<\/strong> as dangerous. Additionally, Phantom announced that \u201ccoinmarket.com was blocked.\u201d<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Security firm Coinspect Security stated that the attack occurred through <strong>CoinMarketCap\u2019s backend API<\/strong>. Malicious JavaScript codes were injected into the system via the platform\u2019s \u2018doodles\u2019 feature. This technique could lead to wallets being drained without users\u2019 knowledge. The pop-up requested <strong>ERC-20<\/strong> token approvals, aiming to scam users.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2><span data-contrast=\"auto\">Rising Crypto Attacks Draw Attention<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">This incident brings other recent crypto attacks back into focus. In recent weeks,<a href=\"https:\/\/coinengineer.net\/blog\/israel-iran-tensions-weigh-on-markets-us-opens-lower\/\"> Iran-based<\/a> exchange <strong>Nobitex<\/strong> was targeted by Israeli hackers, causing over <strong>$100 million<\/strong> in damages. Around the same time, global giant Coinbase also faced a similar attack.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">CoinMarketCap had previously been hacked in October 2021, when around <strong>3.1 million users<\/strong>&#8216; email addresses were stolen. In this recent incident, a phishing attack aimed to gain access to users&#8217; private keys. The <strong>crypto community<\/strong> once again emphasized the importance of being cautious about prompts asking for wallet connections.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">CoinMarketCap announced that it has started working on improving security following the attack. Users must also act responsibly against such fake redirects. Avoiding untrusted links and regularly reviewing wallet access permissions are of vital importance.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-ccp-props=\"{}\"> <em class=\"darkmysite_style_txt_border darkmysite_processed\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\">You can also freely share your thoughts and comments about the topic in the comment section. Additionally, don\u2019t forget to follow us on our\u00a0<a class=\"darkmysite_style_txt_border darkmysite_style_link darkmysite_processed\" href=\"https:\/\/t.me\/coinengineernews\" target=\"_blank\" rel=\"noreferrer noopener nofollow\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\"><strong class=\"darkmysite_style_txt_border darkmysite_processed\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\">Telegram,\u00a0<\/strong><\/a><a class=\"darkmysite_style_txt_border darkmysite_style_link darkmysite_processed\" href=\"https:\/\/www.youtube.com\/@CoinEngineer\" target=\"_blank\" rel=\"noreferrer noopener nofollow\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\"><strong class=\"darkmysite_style_txt_border darkmysite_processed\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\">YouTube<\/strong><\/a>,\u00a0and\u00a0<a class=\"darkmysite_style_txt_border darkmysite_style_link darkmysite_processed\" href=\"https:\/\/twitter.com\/coinengineers\" target=\"_blank\" rel=\"nofollow noopener\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\"><strong class=\"darkmysite_style_txt_border darkmysite_processed\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\">Twitter<\/strong><\/a>\u00a0channels for the latest\u00a0<a class=\"darkmysite_style_txt_border darkmysite_style_link darkmysite_processed\" title=\"News\" href=\"https:\/\/coinengineer.net\/blog\/news\/\" data-internallinksmanager029f6b8e52c=\"7\" data-darkmysite_alpha_bg=\"rgba(0, 0, 0, 0)\">news<\/a>\u00a0and updates.<\/em><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The popular crypto tracking platform CoinMarketCap recently faced a significant security issue. When users accessed the site, they encountered a \u201cVerify Wallet\u201d pop-up on the screen. This message was a fake verification prompt asking users to connect their wallets. The platform quickly identified the attack and removed the malicious code from the system within three<\/p>\n","protected":false},"author":36,"featured_media":42560,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[18836,18830,18831,18826,18832,18829,18837,18828,18833,18834,18835,18827],"class_list":["post-44779","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-backend-api-vulnerability","tag-coinmarketcap-hack-news","tag-crypto-api-exploit","tag-crypto-phishing-threat","tag-doodles-feature-attack","tag-erc20-wallet-scam","tag-fake-wallet-connection","tag-malicious-javascript-crypto","tag-metamask-warning-popup","tag-phantom-wallet-alert","tag-phishing-in-crypto-sites","tag-wallet-verification-scam"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer\" \/>\n<meta property=\"og:description\" content=\"The popular crypto tracking platform CoinMarketCap recently faced a significant security issue. When users accessed the site, they encountered a \u201cVerify Wallet\u201d pop-up on the screen. This message was a fake verification prompt asking users to connect their wallets. The platform quickly identified the attack and removed the malicious code from the system within three\" \/>\n<meta property=\"og:url\" content=\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/\" \/>\n<meta property=\"og:site_name\" content=\"Coin Engineer\" \/>\n<meta property=\"article:published_time\" content=\"2025-06-21T06:56:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642-1024x576.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"576\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Yeliz Akmaca\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Yeliz Akmaca\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/\",\"url\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/\",\"name\":\"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer\",\"isPartOf\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png\",\"datePublished\":\"2025-06-21T06:56:58+00:00\",\"dateModified\":\"2025-06-21T06:56:58+00:00\",\"author\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/5f900e6c865999388c1ea494e5953442\"},\"breadcrumb\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage\",\"url\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png\",\"contentUrl\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png\",\"width\":1920,\"height\":1080,\"caption\":\"Hypurr NFTs stolen on HyperEVM\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/coinengineer.net\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#website\",\"url\":\"https:\/\/coinengineer.net\/blog\/\",\"name\":\"Coin Engineer\",\"description\":\"Btc, Coins, Pre-Sale, DeFi, NFT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/coinengineer.net\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/5f900e6c865999388c1ea494e5953442\",\"name\":\"Yeliz Akmaca\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b399e2146177639d343205648bae3bdb3cd7bb9d02c7186f71149c7122151b69?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b399e2146177639d343205648bae3bdb3cd7bb9d02c7186f71149c7122151b69?s=96&d=mm&r=g\",\"caption\":\"Yeliz Akmaca\"},\"url\":\"https:\/\/coinengineer.net\/blog\/author\/cmyelizz\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/","og_locale":"en_US","og_type":"article","og_title":"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer","og_description":"The popular crypto tracking platform CoinMarketCap recently faced a significant security issue. When users accessed the site, they encountered a \u201cVerify Wallet\u201d pop-up on the screen. This message was a fake verification prompt asking users to connect their wallets. The platform quickly identified the attack and removed the malicious code from the system within three","og_url":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/","og_site_name":"Coin Engineer","article_published_time":"2025-06-21T06:56:58+00:00","og_image":[{"width":1024,"height":576,"url":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642-1024x576.png","type":"image\/png"}],"author":"Yeliz Akmaca","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Yeliz Akmaca","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/","url":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/","name":"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0 - Coin Engineer","isPartOf":{"@id":"https:\/\/coinengineer.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage"},"image":{"@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage"},"thumbnailUrl":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png","datePublished":"2025-06-21T06:56:58+00:00","dateModified":"2025-06-21T06:56:58+00:00","author":{"@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/5f900e6c865999388c1ea494e5953442"},"breadcrumb":{"@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#primaryimage","url":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png","contentUrl":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2025\/05\/taslak-ce-2025-05-17T000247.642.png","width":1920,"height":1080,"caption":"Hypurr NFTs stolen on HyperEVM"},{"@type":"BreadcrumbList","@id":"https:\/\/coinengineer.net\/blog\/coinmarketcap-removed-malicious-code-threatening-crypto-wallets\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/coinengineer.net\/blog\/"},{"@type":"ListItem","position":2,"name":"CoinMarketCap Removed Malicious Code Threatening Crypto Wallets\u00a0"}]},{"@type":"WebSite","@id":"https:\/\/coinengineer.net\/blog\/#website","url":"https:\/\/coinengineer.net\/blog\/","name":"Coin Engineer","description":"Btc, Coins, Pre-Sale, DeFi, NFT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/coinengineer.net\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/5f900e6c865999388c1ea494e5953442","name":"Yeliz Akmaca","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b399e2146177639d343205648bae3bdb3cd7bb9d02c7186f71149c7122151b69?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b399e2146177639d343205648bae3bdb3cd7bb9d02c7186f71149c7122151b69?s=96&d=mm&r=g","caption":"Yeliz Akmaca"},"url":"https:\/\/coinengineer.net\/blog\/author\/cmyelizz\/"}]}},"_links":{"self":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/44779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/users\/36"}],"replies":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/comments?post=44779"}],"version-history":[{"count":1,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/44779\/revisions"}],"predecessor-version":[{"id":44780,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/44779\/revisions\/44780"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/media\/42560"}],"wp:attachment":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/media?parent=44779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/categories?post=44779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/tags?post=44779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}