CoinMarketCap, one of the most widely used cryptocurrency price-tracking platforms, has confirmed the removal of malicious code responsible for a phishing popup that targeted users’ wallets.
In a statement posted on its official X (formerly Twitter) account on Friday, CoinMarketCap said it had “identified and removed the malicious code” after reports surfaced of a popup prompting users to “Verify Wallet.” The message reportedly asked users to connect their wallets and approve access to ERC-20 tokens — a common phishing tactic aimed at stealing digital assets.
“Our team is continuing to investigate and taking steps to strengthen our security,” the company said, emphasizing that the incident is still under review.
The warning came after multiple users flagged the scam across social media. Crypto wallets MetaMask and Phantom quickly responded, with Phantom issuing a browser alert labeling the CoinMarketCap site as “unsafe to use.”
Security concerns have once again come to the forefront in crypto, as phishing scams continue to evolve in sophistication. The latest breach follows a 2021 incident in which more than 3.1 million CoinMarketCap user email addresses were leaked and later found circulating on hacking forums.
CoinMarketCap has urged users not to interact with any wallet verification prompts and to remain vigilant as it continues to investigate the breach.
#CoinMarketCap #scam