EddieJayonCrypto

 24 Jun 25

tl;dr

Changpeng Zhao, former CEO of Binance, warned of a new wave of cyberattacks targeting crypto data platforms following recent breaches at CoinMarketCap (CMC) and CoinTelegraph (CT). Both platforms experienced phishing schemes that prompted users to connect their wallets via fake pop-ups, leading to c...

Changpeng Zhao, the former CEO of Binance, has issued a stark warning about a new wave of cyberattacks targeting cryptocurrency data and news platforms following recent phishing breaches at CoinMarketCap (CMC) and CoinTelegraph (CT). These incidents marked a troubling shift in hackers' strategies, where attackers are now exploiting trusted crypto information websites rather than attacking exchanges directly.

The attack on CoinMarketCap began on June 21, when users encountered a deceptive pop-up asking them to “Verify Wallet” by connecting their crypto wallets. This phishing scam tricked 39 victims into losing about $18,570, with CMC planning reimbursements for those affected after removing the malicious code and launching security investigations. Just two days later, CoinTelegraph suffered a similar breach involving a fake token airdrop pop-up promising 50,000 “CTG” tokens worth roughly $5,500. This pop-up, linked to malicious JavaScript from the site’s advertising system, falsely claimed endorsement by the security firm CertiK. CT promptly warned users not to engage with suspicious prompts or connect their wallets while working to fix the exploit.

These attacks demonstrate a significant tactical evolution among cybercriminals who now leverage trusted platforms to entrap users, capitalizing on the community’s confidence in these information sources. This method bypasses the traditionally more fortified crypto exchanges, increasing the likelihood of success for hackers.

Supporting the trend, a study by TRM Labs revealed that phishing and malware infrastructure attacks accounted for 70% of the $2.2 billion stolen from crypto hacks in 2024. Compounding the risk, a massive data breach recently unveiled over 16 billion login credentials obtained through infostealer malware, credential stuffing, and repackaged past leaks, painting a grim picture of the cyber threat landscape.

Users are urged to exercise heightened caution by avoiding wallet connections or entering sensitive information on unexpected pop-ups, particularly when engaging with crypto-related sites. The community’s increased vigilance remains crucial in the face of increasingly sophisticated phishing attempts and evolving cyberattack tactics.

Disclaimer

The opinions expressed by the writers at Grow My Bag are their own and do not reflect the official stance of Grow My Bag. The content provided on our site is not intended as investment advice, and Grow My Bag is not an investment advisor. We do not endorse buying or selling any cryptocurrencies or digital assets mentioned in our articles. High-risk investments in Bitcoin, cryptocurrencies, and digital assets require thorough due diligence, and all transfers and trades made are at your own risk. Grow My Bag is not responsible for any potential losses and participates in affiliate marketing.
 27 Jun 25
 27 Jun 25
 27 Jun 25