How Safe Are You from the New Crypto Scam Wave?

Changpeng “CZ” Zhao, the former CEO of Binance,  has raised a serious crypto scam warning for anyone who is using popular crypto data sites. In a post he posted on June 23 on X, he cautioned that hackers are attacking big sites by stealing wallet authentication pop‑ups, making it almost shockingly easy to steal your money. He called on everyone to be watchful.

What's Happening Now?

In his X post, CZ issued a warning about an unknown wave of phishing pop‑ups that falsely prompt users to link their wallets in the name of receiving tokens or airdrops. Such pop‑ups have been occurring on popular dogotal assests information sites such as Cointelegraph and CoinMarketCap. Why is this so important?

Source: CZ on X

Recent Attacks on Trustworthy Platforms

CZ pointed out that the wave of hacks has hit big sites:

• Cointelegraph: A malicious pop‑up advertised bogus "ICO airdrops" and "CTG tokens," requesting customers to add their wallets on the site itself.

• CoinMarketCap: Two days prior, the website was similarly hacked, with wallet‑connect requests initiated by hackers.

Users were greeted with flashy pop-ups promising free rewards, but all were based on a scam to fool them into sharing wallet access. One misplaced click, and your money's gone.

Why This Scam Is Highly Concerning

People feel that they can trust these sites, Such as Coin Telegraph seems authentic and reliable; therefore, users do not think twice before clicking.

• It bypasses normal protection: Unlike harmful links in emails, these attacks appear immediately on the websites by themselves.

• Wallet connection = complete control : Granting a wallet connection bypasses normal security checks, essentially giving away control of your crypto. This is why CZ called it a crypto scam alert moment.

• 
  

This deception trick highlights how much more advanced phishing has become today; instead of shady emails, attackers are now targeting fake wallet connect pop-ups directly to trusted cryptocurrency websites. Tricking users into thinking that the prompts are safe and official.

How to Protect Yourself Right Now

CZ and the impacted websites strongly recommend that everyone :

• Never click on crashy pop-ups—if it smells fishy, leave it alone.

• Only connect wallets on official sites—verify URLs such as cointelegraph.com, not .net or .xyz.

• Don't share wallet metadata unless necessary—never grant more than necessary permissions.

• Keep up to date—always use the latest versions of browsers and patch security vulnerabilities early.

• These easy precautions keep you safe from falling victim.

What This Means for the Crypto Ecosystem

This latest wave of attacks represents an unsettling trend: hackers are abandoning phishing emails and SMS—these days, they're going after the tools and sites that we, by nature, trust. By injecting deceptive pop-ups onto platforms, they've set a new benchmark for stealthy crypto attacks. But the question is, are we ready for the next stage of digital threats?

Quick Safety Reminder

CZ is ringing the crypto scam alarm loudly, but that's just half the fight. Users must remain cool, be safe, and guard their wallet access. Be as alert in guarding their access as their private keys. Always stop and think before linking and check that you're on a secure site. This won't save only your crypto—it keeps you ahead of the next wave as well.