Cointelegraph Website Compromised by Front-End Exploit, Fake Airdrop Pop-Up Injected

Crypto media outlet Cointelegraph suffered a front-end exploit on Sunday, with attackers embedding a fraudulent pop-up promoting a fake "CoinTelegraph ICO Airdrop" and "CTG tokens." The malicious banner lured users to connect wallets for a purported $5,500 token distribution, citing a fabricated CertiK audit for credibility.

The platform swiftly warned users via X to avoid interacting with the pop-up, emphasizing risks of wallet drainage. This incident mirrors a nearly identical attack on CoinMarketCap two days prior, where hackers used similar tactics to hijack trusted platforms and bypass user skepticism.

Front-end exploits are increasingly weaponized to turn legitimate sites into vectors for wallet drainers, exploiting trust in brands like Cointelegraph to phish credentials. The breach underscores persistent vulnerabilities in web3 infrastructure despite heightened security awareness.