CoinMarketCap experienced a supply chain attack that injected malicious scripts into its website, leading to a wallet drainer campaign targeting visitors’ cryptocurrencies. This incident highlights the vulnerability of third-party resources and the increasing threat of wallet drainers in the crypto space. #CoinMarketCap #WalletDrainers
Keypoints
- The attack exploited a vulnerability in CoinMarketCap’s homepage doodle image to inject malicious JavaScript.
- Threat actors used a tampered API response to deliver a wallet drainer script from an external site.
- Visitors connecting their wallets saw fake popups mimicking legitimate Web3 transactions, leading to asset theft.
- The attack resulted in the theft of approximately $43,266 from 110 victims.
- Supply chain attacks like this are difficult to detect because they target trusted third-party components.