The cryptocurrency world while filled with technological innovation and opportunities for financial gain, also present significant risks and scams. One of the most used techniques is phishing attacks. These simple yet effective scams have led to a steady rise in financial losses within the crypto community. What is a phishing attack? And how can they be avoided? Find out more in the following article.
Phishing is a scam that “fish” or bait victims to provide sensitive data such as passwords or private keys. This type of scam is one of the most popular and common scams. These scammers use various mediums such as social media, private messages, and email. In addition, this is also one of the ways hackers steal Bitcoin from digital wallets.
Phishing scams usually come in the form of messages on behalf of an important organization or person. This message then invites the victim to follow instructions, such as entering the link sent or sending tokens to a specific address.
Perpetrators will hide ransomware or spyware behind these links to obtain important information from users. In a more advanced crypto phishing, the victim will immediately lose his crypto assets when using the link provided by the fraudster.
In addtion to phising attack, the following are some of the scams that are rampant in crypto.
“X (formerly Twitter) has been a primary platform for hackers to execute phishing attacks. Given its widespread use among crypto communities and as a channel for official project accounts, X users have become prime targets for hackers.
Scam Sniffer reports that a common phishing tactic is impersonating other X users, including celebrities and official project accounts. Victims are typically lured to phishing websites through tweets containing links from these imposter accounts.
A recent trend in phishing attacks is permit phishing, where victims are tricked or coerced into approving a seemingly harmless transaction. However, this approval allows hackers to steal the victim’s tokens. Once they gain control, hackers drain the victim’s wallet.
Besides X, phishing links are often disseminated through Google ads and impersonating project support teams on platforms like Discord or Telegram. These imposters offer assistance while sending phishing links.
Ethereum blockchain is the primary target for phishing attacks due to its high liquidity and widely known smart contracts. Hackers exploit open-source contracts to create phishing links or develop realistic smart contracts to deceive unsuspecting victims.
The DeFi sector has become a common hunting ground for scammers. Learn how to use DeFi safely here.
According to CoinTelegraph, cryptocurrency phishing attacks resulted in losses of $127 million in the third quarter of 2024 alone, with approximately 11,000 victims falling prey each month.
Before this, Scam Sniffer reported total losses of $314 million due to phishing attacks in the first half of 2024. This represents a significant increase compared to the $295 million lost to phishing in 2023.
In total, $468 million was stolen through phishing attacks between January and September 2024, with $46 million occurring in September alone.
Scam Sniffer’s report indicates that there were 10,800 phishing victims in September. The largest loss occurred on September 28th when a permit phishing signature attack drained 12,083 spWETH valued at $32.43 million.
Identifying phishing attacks can be challenging as scammers go to great lengths to create convincing emails and websites. However, there are several red flags to watch out for:
Phishing attacks have proven to be a simple yet highly effective method. The modus operandi remains consistent: preying on the unwary victims. The best defense against phishing attacks is vigilance and caution. Here are some tips to help you stay safe:
Scams are also common in the NFT world. Learn the types of scams to avoid becoming a victim.
Phishing is a scam that “fish” or bait victims to provide sensitive data such as passwords or private keys. Recently, a new tactic known as permit phishing has emerged, where victims are tricked into approving seemingly harmless transactions. Unbeknownst to them, this approval allows hackers to drain their entire wallets.
The key to avoiding phishing attacks is to remain vigilant, verify information, and avoid clicking on suspicious links or emails. Additionally, using third-party applications to check the security of links and websites can provide an extra layer of protection.
Looking to invest in crypto assets? No worries, you can safely and conveniently purchase a wide range of cryptocurrencies such as BTC, ETH, SOL, and others safely and easily at Pintu. Pintu diligently evaluates all its crypto assets, highlighting the significance of being cautious.
Pintu is also compatible with popular wallets such as Metamask to facilitate your transactions. Download Pintu app on Play Store and App Store! Your security is guaranteed because Pintu is regulated and supervised by Bappebti and Kominfo.
Aside from buying and trading crypto assets, you can expand your knowledge about cryptocurrencies through various Pintu Academy articles. Updated weekly, all Pintu Academy articles are made for knowledge and educational purposes, not as financial advice.
Share