The Coinmarketcap portal confirmed that this June 20, 2025 He was a victim of a brief security incident that affected the navigation experience of some users. For several hours, the site home page deployed an emerging window (Pop-up) Deceptive that I asked visitors to connect their purses under the message “Verify your Wallet”.
CoinmarketCap’s team He took action immediately, after detecting that the emerging message was not part of his legitimate functions. In a statement that It was published After the incident, the platform explained that the origin of the problem. This window was linked to an external call that activated an unauthorized script, which caused the appearance of the suspicious message.
During the attack, the malicious message imitated legitimate functions of connection with Web3 wallets, which led security analysts to quickly alert about their fraudulent nature, as reported by cryptootics. The notice emerged on the home page and urged users to connect their wallets for no clear reason, a common tactic in Phishing schemes.
As detailed by the company, the malicious code was injected by a third -party service that provides content to the platform, possibly a compromised advertisement network. The company clarified that its internal infrastructure was not affected and that the gap did not compromise databases or critical systems. All scripts and resources involved were eliminated and new safeguards were applied to prevent a similar situation from being repeated.
Also, Coinmarketcap said that the site is already safe for visitors and that your support team is available to answer any consultation related to the incident. He also reaffirmed his commitment to security and transparency to his user community.
It should be noted that the incident occurs in a context of high activity by attackers seeking to exploit vulnerabilities on platforms related to cryptoactive. So far from 2025, security gaps in the sector They have caused Losses higher than USD 2,000 million. Between The cases most prominent appears a mass exploit of USD 1.4 billion against the Bybit platform.
