<ul data-eligibleForWebStory="true"><li>Crypto websites CoinTelegraph and CoinMarketCap experienced security breaches through phishing attacks.</li><li>Reports suggest that a frontend exploit injected malicious code into browsers via compromised ad scripts and third-party widgets.</li><li>Attackers utilized JavaScript vulnerabilities to display a deceptive ad offering fake token airdrops to users.</li><li>Users were prompted to connect wallets, potentially leading to unauthorized asset transfers by a draining program.</li><li>MetaMask flagged CoinTelegraph's website as deceptive during the incident, alerting visitors to possible phishing activities.</li><li>CoinTelegraph quickly addressed the issue, removing the unauthorized code and enhancing security measures.</li><li>It remains unclear if the attacks on CoinTelegraph and CoinMarketCap are connected, though both involved injected malicious scripts from third-party services.</li></ul>

Phishing Attacks Hit Top Crypto Sites: CoinMarketCap & CoinTelegraph Affected

Discover more