Crypto data provider CoinMarketCap has recovered from a brief security lapse. The incident exposed website visitors to a deceptive pop-up urging them to connect their crypto wallets.
The June 20 incident disrupted the platform’s front-end interface for a few hours before the team took corrective action.
CoinMarketCap’s Breach Traced to Malicious Doodle
According to the company, the breach involved an unexpected pop-up on its homepage, instructing users to verify their wallets to access full account features.
“We’re aware that a malicious pop-up prompting users to ‘Verify Wallet’ has appeared on our site. Do NOT connect your wallet,” the data aggregator warned.
While the message mimicked legitimate functionality, security analysts quickly warned that the request was malicious and likely intended to compromise user wallets.
In a follow-up update, CoinMarketCap revealed that the issue stemmed from a doodle image embedded on its homepage. The image was linked to an external call that triggered unauthorized JavaScript, resulting in the suspicious wallet prompt.
“On June 20, 2025, our security team identified a vulnerability related to a doodle image displayed on our homepage. This doodle image contained a link that triggered malicious code through an API call, resulting in an unexpected pop-up for some users when visited our homepage,” CoinMarketCap explained.
Investigators found that the breach may have originated from a compromised third-party service, likely an ad network. This service injected malicious code into the platform’s display system.
Meanwhile, CoinMarketCap clarified that external dependencies used to serve content—not its internal infrastructure—caused the issue.
The platform confirmed that all affected scripts and assets had been removed, and new safeguards were introduced to prevent similar exploits. It also assured users that the situation was under control and that visiting the site is now safe.
“We’re actively monitoring user feedback and our support team is standing by to ensure all inquiries are promptly addressed. We are committed to maintaining the highest standards of security and transparency, and we thank you for the continued trust of our community,” it added.
CoinMarketCap, owned by Binance, continues to serve millions of users who track real-time crypto prices and market data.
However, this episode reminds us that even the most established platforms must remain proactive in protecting users from increasing threats.
Due to this, security experts have urged crypto wallet users to always take precautions by constantly reviewing recent activity and avoiding connecting to unknown dApps or prompts.
So far this year, hackers have aggressively targeted vulnerabilities across even the most reputable platforms. Combined, these breaches have led to over $2 billion in stolen assets, including a massive $1.4 billion exploit on Bybit.
Disclaimer
In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and Conditions, Privacy Policy, and Disclaimers have been updated.
