Popular Crypto Data Sites Suffers Phishing Attack, MetaMask Users Targeted

Several users from popular crypto data platforms like Etherscan, CoinGecko, DeFi Pulse, Dextools, and others have been subjected to a phishing attack. Affected users received prompts to connect their MetaMask wallets to a website called “nftapes.win”. DeFiPrime, CoinGecko Targeted With Phishing Attack The attack was reported by various sources, including decentralized finance channel DeFiPrime which stated that its platform was compromised by suspicious pop-ups. It seems a lot of sites compromised: Spiritswap, Etherscan, Coingecko. Be extra careful when approving transactions, and always double-check that you are interacting with the proper smart contract. — defiprime (@defiprime) May 13, 2022 In a follow-up message, CoinGecko said that its investigation pointed to crypto ad platform Coinzilla as the source of the phishing attack code. Update: The situation is caused by a malicious ad script by Coinzilla, a crypto ad network – we have disabled it now but there may be some delay due to CDN caching. We are monitoring the situation further. Do stay on alert and don't connect your Metamask on CoinGecko. https://t.co/NY0ppKecIG — CoinGecko (@coingecko) May 13, 2022 Similarly, DexTools, another crypto-focused app site also blamed the crypto ad platform as the cause of the phishing attack. “We are disabling all ads until the situation is clarified by @adsbycoinzilla. Please be aware and don’t sign suspicious requests at your wallet. ...