Cointelegraph and CoinMarketCap Breached: Ad Network Scams Expose Crypto’s Soft Underbelly
Trusted pillars of the crypto world, Cointelegraph and CoinMarketCap, have been blindsided by slick hackers using ad networks and third-party integrations to prey on unsuspecting users. Fake airdrops and malicious scripts have turned these go-to platforms into hunting grounds, proving once again that even the most reputable names in our space aren’t immune to the dark side of decentralization’s promise.
- Fake pop-up on Cointelegraph promised 50,000 nonexistent “CTG” tokens worth over $5,000.
- Ad networks and third-party APIs, not core systems, were the entry points for scams on both platforms.
- Hackers are weaponizing trust in major crypto sites, exploiting familiarity with airdrops and giveaways.
On a quiet Sunday, visitors to Cointelegraph—one of the biggest names in cryptocurrency news—were hit with a pop-up screaming “Congratulations!” It claimed they’d snagged 50,000 “CTG” tokens, supposedly worth over $5,000, as part of a shiny airdrop. The branding was pure Cointelegraph, down to the familiar logos and slick design, making it look like the real deal. But let’s cut to the chase: there’s no “CTG” token. A glance at CoinGecko or CoinMarketCap shows zero trace of it on any blockchain explorer. This was a straight-up con, engineered to lure users into connecting their crypto wallets and potentially handing over the keys to their funds, as detailed in this report on the front-end exploit.
For those new to the game, connecting a wallet to a site often means approving smart contracts—essentially digital agreements that can move your tokens. In a scam like this, hidden malicious code, often sneaky JavaScript, acts like a trapdoor in your house, letting thieves slip in unnoticed to drain your account with a single approval. Think of it as signing a blank check without realizing it. And the gut punch? This didn’t pop up on some sketchy forum—it was on a platform countless users trust for daily Bitcoin updates.
Cointelegraph didn’t sit idle, issuing a stark warning on Twitter to halt the damage:
“
