Cybersecurity Storm for Cryptocurrency Market: Risks of Stolen Data
Cryptocurrency market data site CoinMarketCap has just suffered a serious cyberattack, causing a stir in the crypto community. The front-end of the website was compromised, injecting malicious JavaScript code into the rotating “Doodles” function. Dubbed “verify wallet”, this pop-up was intended to steal users’ assets. A rather dangerous vulnerability, capable of losing hundreds of millions of dollars in a moment.
Details of the attack and the nature of the malware
According to blockchain analysis, the malicious code was delivered via manipulated JSON files, which were run through CoinMarketCap’s internal API. When loading a doodle named “CoinmarketCLAP,” the malicious JavaScript took advantage of the vulnerability to execute itself, redirecting visitors to a ‘wallet drainer’ page named “Impersonator.”
The secret function of this malware is to automatically send Token approval requests to the victim's wallet, in order to gain maximum control over their cryptocurrency. Analysis from powerful security analysts identified the address receiving the illegitimate Token as 0x000025b5ab50f8d9f987feb52eee7479e34a0000.
Vulnerability analysis and attack method hypotheses
Security experts predict that the malware most likely exploits a vulnerability in the Lottie animation engine or a similar tool, allowing arbitrary JavaScript execution via configuration JSON. According to Coinspect, the attackers may have accessed the backend, setting the rootkit's end time remotely, which may have been prepared in advance.
Measures to handle and warn the community
CoinMarketCap confirmed that it had removed the malware, stating: “We have removed the malware from the site. Our team continues to investigate and enhance our defenses.” The system has been fully restored. However, security experts advise cryptocurrency users to be extremely cautious when accessing their wallets, especially on platforms like CoinMarketCap, where many investors follow every minute.
Experts warn that those who linked wallets or approved tokens at the time of the breach are at risk of having their assets stolen. To avoid this, investors should revoke recent token approvals and avoid interacting with similar pop-ups on crypto-related platforms.
Overview of the biggest data loss in internet history
In this context, on Thursday, Cryptopolitan reported on a massive data leak, containing more than 16 billion usernames and passwords, that shocked the global cybersecurity community. Riskiest, most unpredictable danger in the world of cryptocurrencies.
BitoPro Confirms $11 Million Cryptocurrency Theft by Lazarus Group
Related news revealed that Taiwanese exchange BitoPro was hacked, with an estimated loss of $11 million in digital assets. The North Korean state hacker group Lazarus was identified as the culprit, having previously been involved in illegal international money transfers and unauthorized access to crypto platforms.
The attack occurred on May 8, 2025, during a hot wallet system update. The attackers took advantage of employee devices, infiltrated through free AWS Tokens, installed malware through social engineering techniques, and controlled the entire flow of assets through blockchains such as Ethereum, Solana, Polygon, and Tron. These funds were then laundered through decentralized protocols such as Tornado Cash, Wasabi Wallet, and ThorChain to conceal their origin.
Source: https://tintucbitcoin.com/warning-front-end-coinmarketcap-is-attacked/
Thank you for reading this article!
Please Like, Comment and Follow TinTucBitcoin to stay updated with the latest news about the cryptocurrency market and not miss any important information!
