As hacking techniques targeting cryptocurrency information sites evolve, Binance's former CEO Changpeng Zhao (CZ) urged investors to be cautious about security. Recently, CoinMarketCap and Cointelegraph were consecutively attacked by malware, revealing that attackers are using trusted cryptocurrency data platforms as new entry points to induce wallet connections.
This threat began on June 21 at CoinMarketCap. A popup appeared on the user screen prompting 'Verify Wallet', which was a pre-programmed *phishing attack*. The attack aimed to steal people's key information or sensitive data, and was quickly warned by community users. CoinMarketCap swiftly removed the malicious code and reported that 39 identified victims suffered losses equivalent to approximately 1,857 dollars (about 2.58 million won). They also announced a compensation plan.
Two days later on June 23, Cointelegraph was attacked similarly. A popup appeared offering an airdrop of a fake token called 'CTG', luring users with potential rewards up to 5,500 dollars (about 7.64 million won) to connect their wallets. The popup also included a false statement claiming the smart contract was reviewed by security firm CertiK. Cointelegraph immediately began removing the malicious code and warned users to avoid wallet connections or personal information input.
Chainalysis and cybersecurity analysis firm Scam Sniffer determined that attackers inserted malicious JavaScript through existing advertising systems. This incident is evaluated as a new hacking method beyond simple phishing, using high-traffic media platforms as a *pivot point* for hackers.
According to a recent report by blockchain security company TRM Labs, 70% of the total 2.2 billion dollars (approximately 3.0586 trillion won) in cryptocurrency hacking damages in 2024 were caused by phishing and malware-based attacks. Cybernews also reported that around 16 billion account credentials were leaked through info-stealer malware or account credential stuffing attacks.
In the cryptocurrency industry, which has built credibility through Non-Fungible Token (NFT) issuance by politicians like Trump and Bitcoin ETF approvals by institutions, phishing through information platforms is emerging as a new channel. CZ emphasized, "Information websites are now becoming a greater threat than exchanges, requiring careful approach," and repeatedly stressed that users must verify the source and safety when connecting cryptocurrency wallets.
Real-time news...Go to TokenPost Telegram
<Copyright ⓒ TokenPost, Unauthorized Reproduction and Redistribution Prohibited>
