Cointelegraph Website Compromised by Front-End Exploit with Fake Airdrop
Cointelegraph's website was compromised by a front-end exploit on Sunday. Attackers injected a malicious pop-up promoting “CoinTelegraph ICO Airdrops” and “CTG tokens.”
The fake banner urged users to connect wallets for nearly $5,500 worth of tokens, citing a fake “fair launch” event and a bogus CertiK audit.
Key points:
- Users were warned not to interact with the pop-ups or provide personal information.
- Similar tactics were used in a recent attack on CoinMarketCap.
- Typically, victims connect their wallets under false pretenses, leading to immediate fund loss.
- Both attacks utilized trusted platforms to deceive users.