• Live Crypto Prices
  • Crypto News
    • Worldwide
      • Bitcoin
      • Ethereum
      • Altcoin
      • Blockchain
      • Regulation
    • Australian Crypto News
  • Education
    • Cryptocurrency For Beginners
    • Where to Buy Cryptocurrency
    • Where to Store Cryptos
    • Cryptocurrency Tax in Australia 2021
No Result
View All Result
CryptoABC.net
No Result
View All Result

CoinGecko Warn Users Of ‘Suspicious Pop Ups’ Phishing Attacks

May 17, 2022
in Australian Crypto News
Reading Time: 3min read
0 0
A A
0
CoinGecko Warn Users Of ‘Suspicious Pop Ups’ Phishing Attacks
0
SHARES
14
VIEWS
ShareShareShareShareShare

Several popular crypto websites, including those of data aggregator CoinGecko and Ethereum block explorer Etherscan, were targeted by a large-scale phishing scam last weekend that displayed malicious pop-ups prompting users to connect their MetaMask wallets.

Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, this is a SCAM. Don’t connect it. We are investigating the root cause of this issue. pic.twitter.com/7vPfTAjtiU

— CoinGecko (@coingecko) May 13, 2022

The scam was linked to the now deactivated domain nftapes.win, which displayed the Bored Apes Yacht Club logo in an attempt to appear legitimate. At the time of writing, it was unclear how many users were affected and how much they lost.

🚨 We’ve received reports of phishing popups via a 3rd party integration and are currently investigating.

Please be careful not to confirm any transactions that pop up on the website.

— Etherscan (@etherscan) May 13, 2022

How the Scam Worked

According to CoinGecko, the scammers hijacked the advertising platform Coinzilla, which displays ads across a wide network of crypto-related sites, injecting malicious code that triggered the fraudulent pop-ups.

From there it was a relatively straightforward phishing scam leveraging the trust of the websites they exploited. The pop-ups would prompt users to connect their MetaMask wallets, and of course once they did their digital assets were immediately transferred to the scammers.

When the advertising code was identified as the root cause of the fraudulent pop-ups, it was deactivated on the CoinGecko website.

Advertising Code a Serious Vulnerability

Twitter user and blockchain researcher @CryptoShrine explained that this type of attack is quite common and suggests that Web3 site owners should look to move away from advertising as a primary source of revenue:

8/?

Ideally, the web3 related site owners should generate revenue through other means than just advertising

malvertising is a well-known tactic used by attackers in web2 space and can be extended to web3 space as well

— CryptoShine (@CryptoShine) May 14, 2022

Scams of this nature can cause significant losses because they can affect many websites at the same time by piggybacking on the advertising code, and because the malicious pop-ups can appear on trustworthy websites it increases the likelihood of users falling victim.

Similar Recent Phishing Scams

As crypto has gone more mainstream in the past 18 months, the number of phishing scams has dramatically increased. Last month alone saw MetaMask issue a security alert about a phishing scam affecting iCloud users and hardware wallet provider Trezor suffer a phishing scam that exploited its MailChimp newsletter.

Share this article

Join in the conversation on this article’s Twitter thread.

Disclaimer:
The content and views expressed in the articles are those of the original authors own and are not necessarily the views of Crypto News. We do actively check all our content for accuracy to help protect our readers. This article content and links to external third-parties is included for information and entertainment purposes. It is not financial advice. Please do your own research before participating.


Credit: Source link

ShareTweetSendPinShare
Previous Post

Lido Finance Warns Leveraged Traders As Staked ETH Loses Peg

Next Post

GoDaddy Website Hack Leaves DeFi Protocol ‘SpiritSwap’ Compromised

Next Post
GoDaddy Website Hack Leaves DeFi Protocol ‘SpiritSwap’ Compromised

GoDaddy Website Hack Leaves DeFi Protocol ‘SpiritSwap’ Compromised

You might also like

Kalshi Shows 69% Odds Bitcoin Hits $50,000 Before $100,000

Bitcoin 25-Delta Put-Call Skew Widens Amid Market Consolidation

June 26, 2026
Oman Launches Mandatory National Bitcoin Mining Pool In State-Backed Push

Oman Launches Mandatory National Bitcoin Mining Pool In State-Backed Push

June 26, 2026
Microsoft Copilot AI Predicts Incredible Solana Price by The End of 2026

Microsoft Copilot AI Predicts Incredible Solana Price by The End of 2026

June 24, 2026
Bitcoin ETFs Just Posted Their Third-Worst Week Ever And BTC Can’t Hold $60,000

Bitcoin ETFs Just Posted Their Third-Worst Week Ever And BTC Can’t Hold $60,000

June 30, 2026
VeChain Foundation Releases Q1 2024 Treasury Report

How Legal Case Management Software is Adapting to AI

June 30, 2026
SUI Stuck In A Downtrend After Resistance Rejection, More Losses Ahead?

Institutions Back Sui’s Hashi to Bridge Bitcoin DeFi as Test

June 27, 2026
CryptoABC.net

This is an Australian online news/education portal that aims to provide the latest crypto news, real-time updates, education and reviews within Australia and around the world. Feel free to get in touch with us!

What's New Here!

VeChain Foundation Releases Q1 2024 Treasury Report

Google Expands Gemini Spark to macOS, Adds New App Integrations

June 30, 2026
Bitcoin Holdings in Public Company Treasuries Exceed 200,000 BTC

Claude Sonnet 5 Launches in Harvey: Legal AI Advancements

June 30, 2026

Subscribe Now

  • Contact Us
  • Privacy Policy
  • Terms of Use
  • DMCA

© 2021 cryptoabc.net - All rights reserved!

No Result
View All Result
  • Live Crypto Prices
  • Crypto News
    • Worldwide
      • Bitcoin
      • Ethereum
      • Altcoin
      • Blockchain
      • Regulation
    • Australian Crypto News
  • Education
    • Cryptocurrency For Beginners
    • Where to Buy Cryptocurrency
    • Where to Store Cryptos
    • Cryptocurrency Tax in Australia 2021

© 2021 cryptoabc.net - All rights reserved!

Welcome Back!

Login to your account below

Forgotten Password?

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Please enter CoinGecko Free Api Key to get this plugin works.