In a recent security incident, the prominent cryptocurrency data website CoinMarketCap addressed and removed a malicious popup that targeted users with a fake wallet verification request. The platform confirmed the removal of the harmful code via its official social media channel and assured users that it is taking steps to enhance its security measures.
What Happened on CoinMarketCap?
On June 21, 2025, some visitors to CoinMarketCap encountered a popup message prompting them to “verify their wallet.” This popup was designed to mimic a legitimate security request but was, in fact, a phishing attempt. Its goal was to trick users into connecting their cryptocurrency wallets and approving transactions that would have granted attackers access to their funds.
CoinMarketCap acted swiftly upon discovering the issue. Within hours of receiving user reports, the team identified and removed the malicious code responsible for the popup.
Update: We've identified and removed the malicious code from our site.
Our team is continuing to investigate and taking steps to strengthen our security.
— CoinMarketCap (@CoinMarketCap) June 21, 2025
How Did the Community and Wallets Respond?
The crypto community reacted quickly to warn others about the potential threat. Several users posted alerts on social media platform X, highlighting that the popup was attempting to steal private keys and personal information.
Major wallet providers like MetaMask and Phantom also played a crucial role in protecting users. They promptly issued warnings within their interfaces when users attempted to connect to the suspicious popup, preventing many from approving dangerous transactions.
This incident highlights the importance of community vigilance and the role that wallet security features play in safeguarding user assets.
What Steps Is CoinMarketCap Taking?
Although the malicious code has been eliminated, CoinMarketCap has stated that its internal investigation is ongoing. The team is working to identify the source of the breach and implement stronger security protocols to prevent similar incidents in the future.
The company also used the opportunity to remind users never to connect their wallets to unexpected popups or unverified sources. Always double-check URLs and official communication channels before approving any transaction.
👉 Learn how to enhance your wallet security today
Lessons for Crypto Users
This event serves as an important reminder for everyone in the cryptocurrency space. Phishing attacks and scam popups are common threats that exploit user trust in well-known platforms.
To stay safe:
- Always verify the authenticity of any request asking for wallet connection or transaction approval.
- Use wallet applications that include built-in security warnings and transaction screening.
- Regularly follow official announcements from platforms you use to stay informed about potential risks.
Staying cautious and informed is the best defense against malicious actors online.
Frequently Asked Questions
What was the CoinMarketCap popup scam?
The scam involved a fraudulent popup on CoinMarketCap that urged users to verify their cryptocurrency wallets. It was a phishing attempt designed to steal private keys and gain unauthorized access to funds.
How did CoinMarketCap respond to the security issue?
CoinMarketCap quickly removed the malicious code after being alerted. The team acknowledged the issue on social media and initiated a security review to prevent future breaches.
What should I do if I see a suspicious popup on a crypto website?
Do not interact with the popup or connect your wallet. Immediately exit the site and report the issue to the platform’s official support channel. Always rely on trusted sources for wallet connections.
Did any wallets help prevent users from falling for this scam?
Yes, popular wallets like MetaMask and Phantom detected the malicious nature of the popup and displayed warnings to users who attempted to connect, preventing potential losses.
How can I protect myself from similar phishing attacks?
Enable all security features in your wallet, bookmark trusted sites, avoid clicking on unknown links, and never share your private keys or seed phrases with anyone.
Is it safe to use CoinMarketCap now?
CoinMarketCap has removed the malicious code and is enhancing its security. However, users should always remain cautious and adhere to best security practices when browsing any financial website.