Users targeted by phishing attack via apparent malicious ad code on crypto data sites

UPDATE (6:15 p.m. ET): In a follow-up message, CoinGecko said that its investigation pointed to crypto ad platform Coinzilla as the source of the phishing attack code, saying:

"The situation is caused by a malicious ad script by Coinzilla, a crypto ad network - we have disabled it now but there may be some delay due to CDN caching. We are monitoring the situation further. Do stay on alert and don't connect your Metamask on CoinGecko."

The headline of this report has been updated.


Word emerged late Friday afternoon about an apparent phishing attack targeting users of popular crypto data sites like Etherscan and CoinGecko.

Affected users received prompts to connect their MetaMask wallets to a website called “nftapes.win”.

THE SCOOP