Cointelegraph Website Hacked: Phony Airdrop Pop-up Steals Info

According to cryptocurrency news source Cointelegraph, a front-end exploit that was used for advertising a phony token airdrop and stealing from consumers compromised its website. On Sunday evening, it posted a statement on X stating that it was aware of the fraudulent pop-up and was in the process of fixing it.

Do not click on these pop-ups, connect your wallets, or enter any personal information,

Cointelegraph

Phishing Alert: Cointelegraph Users Targeted by Fake Fair Launch Token Drop

The pop-up erroneously states that users have been chosen to receive a new coin as part of Cointelegraph‘s “fair launch initiative” to honor devoted readers. It offered consumers just under $5,500 in tokens if they connected their cryptocurrency wallets, and it presented a fake token price.

Additionally, it stated that the smart contract had been audited by security firm CertiK. The technique is reminiscent of a similar front-end attack that was launched two days earlier against the price aggregator CoinMarketCap.

In that instance, pop-ups asking for wallet connections for verification were displayed to site visitors. After CoinMarketCap verified that malicious code had been introduced into the website, it was taken down. These occurrences are part of an increasing trend of phishing attacks that exploit hacked user interfaces to target crypto platforms.

Cointelegraph Website Compromised After Record-Breaking Credential Leak

Only a few days after security researchers leaked a huge data dump, the Cointelegraph hack occurred. More than 16 billion compromised login credentials were included in the breach, giving users access to accounts on websites like Facebook, GitHub, Telegram, and Google. Credential stuffing, info-stealing malware, and previous dumps were probably used to put together the treasure trove.

For more up-to-date crypto news, you can follow Crypto Data Space.