Crypto media outlet Cointelegraph has confirmed its web site was compromised by a front-end exploit on Sunday, with attackers injecting a malicious pop-up that falsely claimed to supply “CoinTelegraph ICO Airdrops” and “CTG tokens.”
The pretend banner urged readers to attach their crypto wallets in trade for practically $5,500 value of tokens, citing a “honest launch” occasion and a bogus CertiK audit to lend legitimacy to the rip-off.
“Don’t click on on these pop-ups, join your wallets, or enter any private info,” Cointelegraph warned in a submit on X, including that it was “actively engaged on a repair.”
Victims are usually tricked into connecting wallets for token claims, identification verification, or loyalty rewards — solely to have their funds siphoned instantly after.
The tactic mirrors a virtually an identical exploit on CoinMarketCap two days earlier, the place attackers embedded comparable code to serve pockets phishing prompts.
In each circumstances, the assault relied on hijacking trusted platforms to bypass person skepticism — turning information and information websites into unwitting vectors for pockets drainers.
Learn extra: CoinMarketCap Briefly Exploited With Wallet Phishing Pop-Up Message