Ddos 
The prominent cryptocurrency news platform CoinTelegraph fell victim to a cyberattack on June 22, 2025, at 22:41 UTC. The perpetrators appear to have compromised the website’s front-end infrastructure, injecting malicious JavaScript designed to display fraudulent pop-up messages.
The attackers crafted a deceptive airdrop prompt, claiming that CoinTelegraph was distributing a token named CTG. Each visitor was allegedly entitled to 50,000 CTG tokens, purportedly worth approximately $5,490. Users were prompted to connect their cryptocurrency wallets. Once a wallet was linked, the script would exploit granted permissions to siphon funds—potentially draining users’ wallets entirely. At present, the number of affected users remains unknown.
🚨 CoinTelegraph's frontend has been compromised. Please be cautious. pic.twitter.com/sH025Zek8p
— Scam Sniffer | Web3 Anti-Scam (@realScamSniffer) June 23, 2025
Further analysis revealed that the domain hosting the malicious JavaScript was registered merely three days prior to the incident. Somehow, the attackers succeeded in embedding this script into CoinTelegraph’s frontend, causing the fraudulent pop-up to trigger automatically upon visiting the site.
In an official response, CoinTelegraph advised users not to engage with the pop-ups, connect their wallets, or provide any personal information. The company is actively investigating the breach and working to remediate the issue, though the exact nature of the vulnerability has yet to be disclosed.
Related Posts:
- China Cracks Apple’s AirDrop Feature
- Apple vs. EU: AirDrop, AirPlay & Seamless Pairing at Risk in Europe!
- New Malware Campaign: Fake Java Pop-ups on WordPress Trick Users
- Beware of Fake Google Chrome Update Pop-Ups: Malicious Campaign Targets Hundreds of Websites
- Cybercriminals Target Gamers with Browser-in-the-Browser Phishing Attacks
Donate