Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
Be early to the next big token project
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
More
What Is a Scam? A Comprehensive Guide to Avoiding Crypto Fraudulent Schemes
The cryptocurrency market is developing rapidly, but along with it comes an increase in scams. What is a scam and how can you recognize them? These are questions every crypto investor needs to answer before entering this market.
According to Chainalysis, although damages from crypto scams in 2023 decreased by 65% compared to the previous year, they still amount to billions of USD. This figure shows that scams remain a major threat to the crypto community. Therefore, understanding what scams are and the various forms they take is crucial to protecting your assets.
What Is a Crypto Scam - Definition and Current Risk Level
A scam is a fraudulent act aimed at stealing assets or personal information of victims through sophisticated tricks. In the crypto field, this is called a crypto scam — a term referring to activities directly related to cryptocurrency fraud.
Scammers often use subtle tactics to deceive and manipulate users’ psychology. They may impersonate identities, create fake projects, or use technological tricks to steal money. The danger of crypto scams lies not only in financial loss but also in eroding trust in the entire blockchain ecosystem.
Common Deception Techniques You Need to Know
Phishing Scam - Classic Impersonation Tactic
Attackers impersonate emails, websites, or messages from reputable services to steal personal information and account details. This method is very common in the crypto market because many people are careless with unclear links. For example, a fake Ledger app appeared on Microsoft Store, leading many to believe they were downloading an official application.
Pump and Dump - Manipulating Token Prices
Developers or spy groups use media channels to create FOMO (fear of missing out), prompting users to buy tokens quickly. When prices rise sufficiently, they suddenly sell all tokens, leaving late investors unaware. This strategy is effective long-term because it exploits herd mentality.
OTC Scam and P2P Scam - Risky Transactions
Fraud in OTC or P2P transactions occurs when scammers demand payment upfront and then disappear or use fake forms, transferring incorrect amounts. Users should be cautious and prioritize using trusted third parties as intermediaries.
Impersonating Celebrities and Community Leaders
Scammers create fake accounts of celebrities or community leaders to lure victims into investing in nonexistent “phantom” projects. These accounts often have identical profile pictures, making them hard to distinguish. Users should verify official verification badges and identity before following.
Fake Apps, Wallets, and Exchanges
Attackers create websites or mobile apps that look exactly like reputable projects to steal assets. These sites often have professional interfaces, copied code from originals, making users unaware. Ledger’s warnings about fake apps are clear evidence of this issue.
Fake Social Media Accounts
Hack official accounts of projects or celebrities on X/Discord and spread scam links. Victims often trust verified accounts, unaware they have been compromised. Users should verify information before clicking any links from these accounts.
Fake Admins and Project Staff
Scammers contact users directly via DM, email, or messages, pretending to be admins or staff to steal personal info or private keys. Legitimate projects will never ask for sensitive information through unofficial channels.
Fake Tokens - DeFi Trickery
Creating fake tokens with similar names or contract addresses that resemble popular tokens to trick users into buying the wrong ones. This is common in DeFi. Users should verify the contract address on CoinGecko or CoinMarketCap before purchasing.
Fake Exchange Emails
Sending emails that mimic official exchange communications to steal login info or request 2FA verification. These emails often contain urgent messages like “Account Locked” or “Verify Now.” Users should use anti-phishing codes provided by exchanges to authenticate emails.
Other Fraud Types - More Sophisticated Tricks
Ponzi Schemes - Classic Fraud
Scammers attract investors with promises of high returns from crypto investments. However, they do not actually invest money but use new investors’ funds to pay previous ones. When new investors dry up, the system collapses, and everyone loses.
Fake ICO/IEO
Many projects are orchestrated by scammers, setting up fake websites, social media, and whitepapers to promote fake ICOs/IEOs. They collect money from unsuspecting investors and then disappear. It’s essential to verify the development team, supporting investors, and company history before participating.
Cyber Attacks - Return Tactics
Exchanges and crypto wallets are favorite targets for hackers. Cybercriminals deploy tactics from phishing to zero-day exploits to breach security and steal funds. Users should use strong passwords, enable 2FA, and keep software updated regularly.
Rug Pull - The Most Notorious Exit Scam
Development teams suddenly withdraw all liquidity and support from smart contracts, leaving investors with worthless tokens. This scam has caused billions of USD in losses. Users should check for liquidity lock and security audits before investing.
Signs to Recognize and Effectively Avoid Scams
Red Flags to Watch For
Promises of Unrealistic Profits: Projects advertise huge returns without basis. Crypto profits are risky and not guaranteed. If someone promises fixed monthly returns, it’s a clear warning sign.
Lack of Transparency: Projects lack essential info like business models, team members, or investor lists. Legitimate projects usually publish detailed info on their official websites.
Over-Advertising: Projects spend excessive resources on marketing without concrete products or features.
No Security Audit: Scam projects often lack professional security checks from independent firms like SlowMist or CertiK.
Negative Community Feedback: When researching on crypto forums or Reddit, scam projects often have many warnings from the community.
Copycat Domain and Logo: Scammers try to deceive by using similar domain names and logos of reputable projects, with minor differences.
No Real Product: Projects without actual products, apps, or clear development plans. Even after months, tokens only have announcements without features.
Limited Withdrawal Ability: Scam projects require complex steps to withdraw funds or impose restrictions like long lock-up periods.
Unverified Links and Messages: Avoid clicking links from unknown sources or opening unverified attachments. Scams often use these to distribute malware.
Psychological Manipulation: Projects create financial pressure by emphasizing “limited quantity,” “few hours left,” or “only a few spots,” designed to rush your investment decision.
Step-by-Step Prevention Process
Step 1: Conduct Thorough Research - Read the whitepaper carefully, understand the business model, team, history, and platform operation. Never invest in projects you don’t fully understand. Use CoinGecko and CoinMarketCap to check price history and project duration.
Step 2: Verify Project Information - Confirm the project has an official website, status page, and verified social accounts. Check team details, contact info, partners, and other relevant info. Look for scam reports on ScamAdviser, CryptoScamDB, Coinopsy, or Honey Pot.
Step 3: Protect Personal Data - Never share private keys or seed phrases with anyone, including support staff. Legitimate projects will never ask for this info. Be cautious of sites requesting unnecessary personal info.
Step 4: Use Secure Wallets - Choose reputable wallets with verified security, such as MetaMask, Trust Wallet, or hardware wallets like Ledger. Avoid unverified or suspicious wallets.
Step 5: Verify Domain and Logo - Check domain names carefully before visiting. Use manual URL entry instead of clicking links. Ensure logos match originals; suspicious images or color discrepancies are warning signs.
Step 6: Check Security Audits - See if the project has undergone audits by reputable independent firms. Public audit reports help assess technical risks.
Step 7: Keep Software Updated - Always use the latest versions of software and wallet apps to patch security vulnerabilities. Enable automatic updates.
Step 8: Diversify Investments - Don’t put all your funds into one project. Spread investments across multiple assets to reduce risk.
Step 9: Verify Information Sources - Rely on trusted news outlets, reputable industry blogs, and official channels rather than messages or links from strangers. Seek community or expert support if unsure.
Step 10: Use Secure Payment Methods - Prefer safe payment options like PayPal or credit cards over direct crypto transfers to unknown platforms. These methods offer buyer protection and potential refunds.
Professional Tools for Verification and Protection
Website and Project Checks
Use trusted sites like CoinMarketCap and CoinGecko for market data, price charts, and project info. Scam alert sites like ScamAdviser, CryptoScamDB, Coinopsy, and Honey Pot help identify scam projects. High scam reports warrant caution.
Revoke - Revoke Access to Tokens
Revoke allows you to withdraw permissions granted to DeFi apps on your wallet. After interacting with dApps like Uniswap or Balancer, revoke unnecessary permissions using tools like Revoke.cash to prevent potential security breaches.
Anti-Phishing Code - Additional Security Layer
This feature from exchanges adds a unique code to official emails, helping verify authenticity. If an email lacks this code, it’s likely fake.
Anti-Phishing Software
Use tools like Netcraft or SpoofGuard to scan and block scam websites. These tools help detect and prevent access to phishing sites.
Notable Crypto Scams in History
Confio - Early Exit Scam
Confio used an exit scam—trust-building followed by sudden disappearance and withdrawal of all invested funds. They raised $375,000 via ICO in late 2017, then vanished after receiving the money. The token price plummeted from $0.6 to $0.1 within hours, causing thousands of users to lose everything.
Centra - Fake ICO with Celebrity Endorsements
Centra was a large-scale scam promising $32 million, backed by celebrities like Floyd Mayweather and DJ Khaled, boosting trust. In April 2018, founders were arrested, and tokens lost nearly all value. This shows celebrity backing does not guarantee legitimacy.
LayerZero - Discord Account Hack
On July 5, 2024, LayerZero CEO Bryan Pellegrino’s Discord account was hacked. The attacker posted a scam link titled “Get ZRO tokens,” leading many to believe an airdrop was happening. Thousands connected their wallets to the fake site, becoming scam victims.
DNS Hacks on MyEtherWallet and MyCrypto
DNS hijacking redirects users from legitimate sites to scam sites by altering DNS records. Users accessing the correct URL may still be redirected unknowingly. To prevent this, use offline mode or verify DNS settings when using MyEtherWallet or MyCrypto.
MiningMax - Fake Cloud Mining
MiningMax was a cloud mining scam promising daily ROI of $200 on a $3,200 investment, with referral bonuses. The site collected up to $250 million before collapsing. This highlights the ongoing appeal of multi-level marketing scams.
Bitconnect - Massive Ponzi Scheme
Bitconnect operated as a Ponzi scheme, using new investors’ money to pay earlier investors. It ran for about a year with professional marketing, reaching a market cap of $2 billion and token price of $320. When it collapsed, the token dropped to $6, and market cap fell to $40 million, causing millions to lose money.
Comprehensive Protection Strategy - From Recognition to Action
Knowing what scams are is just the first step. Action is more important. Here’s a comprehensive approach:
Stay Vigilant: Maintain skepticism toward new projects, especially those promising high returns. Greed is your biggest enemy. If something feels off, step back.
Continuous Updates: Crypto markets change fast, and scams become more sophisticated. Follow trusted news sources and communities for the latest info.
Build a Network: Connect with trusted crypto community members who can help verify information and warn about suspicious projects.
Use Tools: Don’t hesitate to utilize available tools like ScamAdviser, CryptoScamDB, and others.
Risk Management: Only invest what you can afford to lose. Avoid emotional or pressured decisions. Diversify to minimize potential losses.
Final Summary
What is a scam? It’s a real threat to the crypto community and will always exist as long as money is involved. However, by understanding scam types, recognizing warning signs, and applying protective measures, you can significantly reduce risks.
Equipping yourself with knowledge to prevent scams is crucial. Lessons from Confio, Centra, LayerZero, MiningMax, and Bitconnect serve as costly lessons for the community. Learn from others’ mistakes instead of suffering losses yourself.
Remember, in crypto, vigilance and thorough research are your most powerful weapons. If in doubt, seek support from the community or experts. Protecting your assets should always be your top priority.