skip to Main Content

Major phishing attack targets users on crypto data sites

Several users of cryptocurrency data platforms like CoinGecko, EtherScan, and Dextools were subjected to a phishing attack on Friday. Complaints from several users alerted that popups appeared on the platforms asking to connect their Metamask wallets.

Phishing Attack Alerts

Following this, CoinGecko tweeted, “Security Alert: If you are on the CoinGecko website and your Metamask prompts you to log in to this site, this is a scam. Do not log in. We are investigating the root cause of this issue.

In a later update, CoinGecko said the phishing attack was caused by a malicious Coinzilla ad script. “The situation is caused by a malicious ad script from Coinzilla, a crypto ad network – we have disabled it now, but there may be some delay due to CDN caching. We are monitoring the situation more closely. Stay alert and do not connect your Metamask on CoinGecko.

Investigate Phishing

Etherscan, an analysis platform for Ethereum, tweeted,

“We have received reports of phishing popups via third-party integration and are currently investigating. Please be careful not to confirm transactions that appear on the website. In the meantime, we have taken immediate action to disable said third-party integration on Etherscan.

Similarly, reacting to an alert not to sign any requests sent to Metamask wallets, Dextools, a DeFi app, said it was disabling all advertisements until the situation was clarified by Coinzilla. “Please be aware and do not sign suspicious requests on your wallet. DEXTools does not automatically request any permissions.

The latest attack adds to the growing number of hacking and phishing instances in the crypto space. Apart from major crypto platforms that have been hacked, crypto wallets have also been targeted by the perpetrators.

According to statistics from Chainalysis, approximately $14 billion was misappropriated in various crypto-related security breaches in 2021.

Anvesh reports major announcements regarding crypto adoption by popular institutions and personalities. Associated with the cryptocurrency industry since 2016, Anvesh is a strong advocate for decentralized technologies. Follow Anvesh on Twitter at @AnveshReddyBTC and contact anvesh(at)coingape.com

The content presented may include the personal opinion of the author and is subject to market conditions. Do your market research before investing in cryptocurrencies. The author or publication assumes no responsibility for your personal financial loss.

Back To Top