Alert: Simultaneous Attacks Hit CoinGecko, Etherscan, Quickswap, and Other Sites | CoinGecko, Etherscan, MetaMask, QuickSwap

During the night from Friday to Saturday, it was learned that several cryptocurrency-related platforms were subjected to attacks of various kinds which could jeopardize the security of their users’ data, and possibly their funds. This situation affected CoinGecko, Etherscan, and QuickSwap.

In the case of CoinGecko and Etherscan, a phishing attack occurred with a pop-up notification when logging into these portals. The message requested that the MetaMask wallet be connected to nftapes.win, a type of advertisement that is not usually displayed on these sites.

Both platforms said that the initial problem was with Coinzilla, an advertising service used by these sites. In a message posted on His Twitter accountCoinzilla said the issue was caused by malicious code in an ad campaign that evaded the site’s automated security checks.

It lasted less than an hour before our team closed it and closed the account‘, added the ad service, which also pledged to ensure that the relevant code is removed from all third-party scripts, to help those affected and investigate the perpetrators of the attack.

They did not acknowledge or deny that any users were affected.

Although the affected platforms released statements containing additional details on Twitter, they neither acknowledged nor denied that users lost money as a result of the attack. This article will be updated when new developments on this issue are reported.

CoinGecko reported on her Twitter account that attack”Disabled now, but there may be some delay due to CDN caching“.”We are monitoring the situation closely. Stay alert and don’t connect your MetaMask to CoinGecko‘, they added.

As for Etherscan, the announcement was similar, On the same social network. “CoinZilla integration is disabled immediately upon receiving the alert. Later, Coinzilla also informed us that they fixed this issue on their end. We have been monitoring the situation since then, and have not seen any new reportsThey wrote from the account of the Ethereum network block explorer.

Another affected platform is DexTools, a decentralized finance (DeFi) application for decentralized exchanges. in a tweetThey also blamed Coinzilla for the problem and asked, “To be careful and not to sign suspicious requests in your wallet, DEXTools does not ask for permissions automatically“.

Quickswap is also compromised

The decentralized exchange, or DEX Quickswap, also fell victim to a security breach, which was reported in the early hours of Saturday, May 14. According to the platform’s official Twitter account, the domain of Quickswap, which was provided and hosted by GoDaddy, was “turned“.

This prevents cryptocurrency exchanges (swaps) from being securely held on the platform. As of this writing, the site is stillin maintenanceIts services cannot be used directly.

Money in LPs, Dragon’s Lair, Syrup Pools, and wallets is safe“, the protocol specified in its message. As in previous cases, Quickswap has not reported any losses that its users may have incurred as a result of this situation.

The use of DEXs has increased since last year, and they are even gradually taking over central exchanges. In this growing category, Quickswap ranks among the top five exchanges in the world by trading volume, according to dappradar.com, so its poor functionality could affect thousands of users.

an offer hide Contents

Leave a Reply

Your email address will not be published.