Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

CoinMarketCap Doodle Hack Steals Crypto

June 23, 2025
Reading Time: 2 mins read
in Incidents
UK’s Oxford Council Legacy Systems Breached

The popular cryptocurrency price tracking site, CoinMarketCap, suffered a very serious website supply chain security attack. This attack exposed the site’s many visitors to a wallet drainer campaign designed to steal their cryptocurrency. On Friday evening, visitors began seeing Web3 popups which were asking them to connect their crypto wallets. When the visitors connected their wallets, a malicious script then proceeded to drain all the cryptocurrency from them.

The company later confirmed that threat actors had utilized a vulnerability in the site’s homepage “doodle” image. The attackers modified the API used by the site to retrieve this doodle image to display on the homepage. This tampered API payload then included a malicious script tag which injected a wallet drainer into the site. When someone visited the page, the script would execute and then display a fake wallet connect popup.

More details about the attack later came from a threat actor who is known to go by “Rey.”

He said the attackers shared a screenshot of the drainer’s control panel on a popular Telegram channel. This panel clearly indicated that over forty-three thousand dollars was stolen from one hundred ten different victims. This information confirmed the financial impact of the supply chain attack, with the actors speaking French on Telegram.

As the popularity of cryptocurrency has boomed, so has the very significant threat that comes from wallet drainers.

These types of attacks are most often promoted through social media posts, online advertisements, and many spoofed websites. Recent industry reports indicate that wallet drainers stole almost five hundred million dollars throughout the year of 2024. The problem has now become so pervasive that Mozilla recently introduced a brand new system to detect them.

Reference:

  • CoinMarketCap Hacked Via Homepage Doodle To Steal Visitor Cryptocurrency
Tags: cyber incidentsCyber Incidents 2025Cyber threatsJapanJune 2025Sompo
ADVERTISEMENT

Related Posts

Infostealer Hidden in Steam Game

Hackers Target Amazon’s AI Code Bot

July 25, 2025
Infostealer Hidden in Steam Game

APTs Use Fake Dalai Lama Apps to Spy

July 25, 2025
Infostealer Hidden in Steam Game

Infostealer Hidden in Steam Game

July 25, 2025
Interlock Ransomware Threat Alert

Hackers Use Ransomware on SharePoint Servers

July 24, 2025
Interlock Ransomware Threat Alert

Data Breach Affects 340K Jobseekers

July 24, 2025
Interlock Ransomware Threat Alert

Beluga Vodka Ransomware Attack Reported

July 24, 2025

Latest Alerts

CastleLoader Uses Clickfix on Windows

Sophos, SonicWall Patch Critical RCE Bugs

Koske Malware Hides in Panda Images

Interlock Ransomware Threat Alert

GitLab Patches Key Vulnerabilities

Backdoor Found in WP Plugins

Subscribe to our newsletter

    Latest Incidents

    Hackers Target Amazon’s AI Code Bot

    APTs Use Fake Dalai Lama Apps to Spy

    Infostealer Hidden in Steam Game

    Data Breach Affects 340K Jobseekers

    Hackers Use Ransomware on SharePoint Servers

    Beluga Vodka Ransomware Attack Reported

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial