Malicious Code Removed, But Investigation Continues
CoinMarketCap has confirmed the removal of a malicious popup that appeared on its website prompting users to “Verify Wallet,” a tactic often used in crypto phishing scams. In a post on its official X account, the platform stated, “We’ve identified and removed the malicious code from our site,” while adding that a full security investigation remains ongoing.
The phishing-style notification sparked concern among users who reported seeing the popup, which was designed to trick visitors into connecting crypto wallets and potentially handing over sensitive information.
CoinMarketCap Urges Caution as Security Tightens
The site urged users not to connect wallets during the incident and emphasized that its team is actively working to strengthen backend security infrastructure. This comes just hours after social media speculation began spreading warnings about the suspicious prompt.
“Our team is continuing to investigate and taking steps to strengthen our security,” CoinMarketCap stated.
Wallet Providers React Swiftly
Prominent wallet providers, including MetaMask and Phantom, were quick to react. Phantom browser extension users were shown a security alert labeling CoinMarketCap as “unsafe to use” during the affected period.
Several community members highlighted that wallet integrations had flagged the threat early, helping to minimize potential victim exposure. Some noted that the popup resembled classic phishing attempts—a widespread issue in the crypto world where malicious actors often impersonate trusted platforms.
History of Security Challenges
This incident comes nearly four years after a 2021 security breach on CoinMarketCap that resulted in 3.1 million email addresses being leaked. The data was later discovered circulating on hacking forums and documented by breach monitoring platforms.
The re-emergence of a security-related issue underscores the ongoing threat posed by phishing attacks and the importance of vigilance in the Web3 space.
Conclusion
CoinMarketCap has acted swiftly to remove the malicious popup and begin a security overhaul. While no funds have been reported stolen, users are urged to remain cautious and avoid interacting with suspicious wallet verification prompts. As the investigation unfolds, trusted browser wallets and anti-phishing alerts remain essential defenses for crypto users navigating decentralized environments.
Disclaimer
This content is for informational purposes only and does not constitute financial, investment, or legal advice. Cryptocurrency trading involves risk and may result in financial loss.