{"id":33026,"date":"2025-06-21T23:01:37","date_gmt":"2025-06-21T23:01:37","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=33026"},"modified":"2025-06-21T23:01:37","modified_gmt":"2025-06-21T23:01:37","slug":"security-alert-coinmarketcap-identifies-and-eliminates-rogue-wallet-scam","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=33026","title":{"rendered":"Security Alert: CoinMarketCap Identifies And Eliminates Rogue Wallet Scam"},"content":{"rendered":"
\n

CoinMarketCap tackled a security scare on its website this week when a fake popup urged users to \u201cVerify Wallet.\u201d The alert first appeared on Friday, prompting worries that hackers had slipped malicious code into the site. Within about three hours, CoinMarketCap<\/a> said it had removed the offending script and began a deeper review of its system.<\/p>\n

Malicious Popup Hits Site<\/strong><\/h2>\n

According to CoinMarketCap\u2019s post on its official X account, the popup was not part of any planned update. Based on reports from users on social media, it asked visitors to connect their wallets and approve ERC\u201120 token transactions. That kind of prompt can lead to wallet theft or unwanted transfers if people click through. CoinMarketCap warned everyone not to connect their wallets until the issue was fixed.<\/p>\n

\n

Update: We\u2019ve identified and removed the malicious code from our site.<\/p>\n

Our team is continuing to investigate and taking steps to strengthen our security.<\/p>\n

\u2014 CoinMarketCap (@CoinMarketCap) June 21, 2025<\/a><\/p>\n<\/blockquote>\n

Wallet Extensions Sound Alarm<\/strong><\/h2>\n

MetaMask<\/a> and Phantom, two popular browser\u2011based crypto wallets, flagged the page as unsafe almost immediately. A crypto user noted that Phantom\u2019s extension showed a warning stating the site was \u201cunsafe to use.\u201d Those built\u2011in alerts likely saved many users from falling for the scam, since both wallets routinely check for suspicious code before letting you sign any requests.<\/p>\n

\"\"<\/p>\n

User Data At Risk<\/strong><\/p>\n

Based on reports from crypto community members, the popup specifically asked for approvals that could give hackers control over tokens in affected wallets. Phishing scams<\/a> like this thrive on tricking users into handing over private keys or signing away permissions. CoinMarketCap\u2019s quick action stopped the popup, but it serves as a reminder that even top sites can be targets.<\/p>\n


\nPast Security Breach Looms<\/strong><\/p>\n

This isn\u2019t the first time CoinMarketCap has faced a breach. Back in October 2021, hackers stole over 3 million email addresses from the site. Those emails later appeared on hacking forums and were flagged by Have I Been Pwned. Now, almost four years later, a new attack vector\u2014injecting code rather than stealing data\u2014shows how threats keep changing.<\/p>\n

\"\"<\/p>\n

Calls For Stronger Security<\/strong><\/p>\n

CoinMarketCap said its team is \u201ccontinuing to investigate and taking steps to strengthen our security.\u201d It did not share a full timeline for its audit, but noted that users should stay alert for any future alerts on X or other channels. Security experts say adding multi\u2011factor checks on code changes and regular scans for injected scripts can cut down on risks.<\/p>\n

Advice For Crypto Users<\/strong><\/p>\n

Experts recommend that users treat any unexpected \u201cconnect wallet\u201d prompt with suspicion, even on trusted sites. Using hardware wallets or browser extensions that clearly list requested permissions can help you spot shady prompts. Keeping your browser and wallet software up to date is equally key. In the fast\u2011moving world of crypto, personal caution remains one of the best defenses.<\/p>\n

Featured image from Bleeping Computer, chart from TradingView<\/em><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

CoinMarketCap tackled a security scare on its website this week when a fake popup urged users to \u201cVerify Wallet.\u201d The alert first appeared on Friday, prompting worries that hackers had slipped malicious code into the site. Within about three hours, CoinMarketCap said it had removed the offending script and began a deeper review of its […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":0,"footnotes":""},"categories":[2],"tags":[3,4,5],"class_list":["post-33026","post","type-post","status-publish","format-standard","hentry","category-news","tag-crypto","tag-doge","tag-news"],"_links":{"self":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/33026","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=33026"}],"version-history":[{"count":0,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/33026\/revisions"}],"wp:attachment":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=33026"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=33026"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=33026"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}