CoinMarketCap面临着恶意的“验证钱包”弹出窗口的安全漏洞。 Swift行动减轻了风险，但用户必须对不断发展的加密骗局保持警惕。

CoinMarketCap's Rogue Wallet Scare: A Scam Alert!

CoinMarketCap的Rogue Wallet Scare：骗局警报！

This week, CoinMarketCap, a go-to source for crypto prices, became the target of a scam, flashing a 'Verify Wallet' popup. The good news? CoinMarketCap reacted fast, pulling the plug on the malicious code in about three hours. The not-so-good news? It's a stark reminder that even trusted sites aren't immune to sneaky scams.

本周，CoinMarketCap是加密价格的首选来源，成为骗局的目标，闪烁了“验证钱包”弹出窗口。好消息？ CoinMarketCap做出了快速的反应，大约三个小时内将恶意代码的插头拉开。不太好的新闻？这是一个鲜明的提醒，即使是值得信赖的网站也不能免疫偷偷摸摸的骗局。

Malicious Popup: A Close Call

恶意弹出窗口：密切通话

Imagine clicking onto CoinMarketCap and seeing a popup urging you to 'Verify Wallet.' That's exactly what happened! This wasn't a planned update; it was a full-blown scam attempt. The popup asked users to connect their wallets and approve ERC-20 token transactions – a classic move that could lead to drained wallets.

想象一下，单击CoinMarketCap，看到弹出窗口敦促您“验证钱包”。那正是发生的！这不是计划的更新；这是一次成熟的骗局。弹出窗口要求用户连接钱包并批准ERC-20令牌交易 - 这是一个经典的举动，可能导致钱包排水。

Wallet Extensions to the Rescue

救援的钱包扩展

Thankfully, crypto wallets like MetaMask and Phantom were on high alert. They immediately flagged CoinMarketCap as unsafe, displaying warnings to users. These built-in alerts likely saved many from falling victim to the scam, proving that security extensions are more than just fancy add-ons.

值得庆幸的是，诸如Metamask和Phantom之类的加密钱包处于高度戒备状态。他们立即将CoinMarketCap标记为不安全，向用户显示警告。这些内置的警报可能使许多人从陷入困境的受害者中救出，证明安全扩展不仅仅是花哨的附加组件。

User Data: Still at Risk?

用户数据：仍然有风险？

The popup aimed to trick users into granting control over their tokens. While CoinMarketCap quickly addressed the issue, it highlights the ever-present threat of phishing scams. These scams rely on tricking users into handing over private keys or permissions. It's a cat-and-mouse game, and staying informed is crucial.

该弹出窗口旨在欺骗用户授予对代币的控制。尽管CoinMarketCap迅速解决了这个问题，但它突出了网络钓鱼骗局的存在威胁。这些骗局依靠欺骗用户移交私钥或权限。这是一款猫和小鼠游戏，保持知识至关重要。

A History of Breaches

违规历史

This isn't CoinMarketCap's first rodeo with security breaches. Back in 2021, hackers swiped over 3 million email addresses. This new attack, injecting malicious code, shows how threats are constantly evolving. It's not just about stealing data anymore; it's about manipulating the site itself.

这不是CoinMarketCap的第一个带有安全漏洞的牛仔竞技表演。早在2021年，黑客就刷了300万封电子邮件地址。这项新的攻击注入了恶意代码，显示了威胁如何不断发展。这不仅仅是窃取数据；这是关于操纵站点本身。

What's Next for CoinMarketCap?

CoinMarketCap的下一步是什么？

CoinMarketCap is investigating and beefing up its security. Experts suggest adding multi-factor checks on code changes and regular scans for injected scripts. It's all about staying one step ahead of the bad guys.

CoinMarketCap正在调查并加强其安全性。专家建议添加有关代码更改和定期扫描注入脚本的多因素检查。这一切都是关于领先坏人的一步。

Protecting Yourself: Tips for Crypto Users

保护自己：加密用户的提示

Here's the deal: treat any unexpected 'connect wallet' prompt with suspicion, even on sites you trust. Use hardware wallets or browser extensions that clearly show requested permissions. And for Pete's sake, keep your browser and wallet software up to date! In the wild west of crypto, caution is your best friend.

这就是交易：即使在您信任的网站上，也要怀疑任何意外的“连接钱包”提示。使用硬件钱包或浏览器扩展名，清楚地显示了所需的权限。为了Pete的缘故，请保持您的浏览器和钱包软件的最新状态！在加密货币的野外西部，谨慎是您最好的朋友。

The Last Word

最后一句话

So, what's the takeaway? CoinMarketCap got hit, but they bounced back fast. This incident is a reminder that security is an ongoing battle. Stay sharp, stay informed, and don't let those rogue wallets get anywhere near your precious crypto!

那么，收获是什么？ CoinMarketCap被击中，但它们迅速反弹。这一事件提醒您安全是一场持续的战斗。保持敏锐，保持知情，不要让这些流氓钱包在您宝贵的加密货币附近到达任何地方！