Navigating the World of Crypto: Tips for Avoiding Scams

Published at: Jan. 15, 2023

Despite the belief of many crypto enthusiasts that centralized exchanges (CEXs) are safer, history has often shown them to be rather vulnerable to attacks.

Because these exchanges centralize the storage of users’ assets, they can be attractive targets for cybercriminals. If an exchange’s security measures are inadequate or successfully compromised, user assets may be stolen or lost.

Another risk of centralized exchanges is the potential for fraud or mismanagement by their operators. Since CEXs may have a single point of control, they may be more susceptible to insider fraud or other forms of misconduct — which can lead to the loss of funds or other negative consequences for users.

Over the last year, with the collapse of major centralized cryptocurrency platforms like FTX and Celsius, more and more users are choosing to take self-custody of their digital assets. The risky financial practices and alleged fraud committed at some of these platforms have caused many people to lose faith in them as safe places to store their cryptocurrency. 

Self-custody refers to holding and managing one’s own cryptocurrency instead of entrusting it to a third party, such as an exchange. This approach offers users greater control over their assets and can potentially provide higher levels of security. However, it also comes with its own risks, particularly in the form of scams.

Types of scams and how to avoid them

To better understand the potential dangers associated with self-custody and offer guidance on how to protect oneself from scams, Cointelegraph reached out to Alice Boucher of Chainabuse, a multichain community platform for reporting fraudulent crypto transactions.

One scam aiming to take advantage of crypto users is called “pig butchering.”

“A pig butchering scam occurs when the scammer stays in constant contact to build a relationship with the victim and ‘fatten them up’ with affection over time to have them invest in fake projects,” Boucher said, adding:

“The scammer tries to drain as much money out of the victim as possible, often using fake investment sites showing large fake profits and using social engineering tactics, such as intimidation, to extract more money from the victim.”

Social engineering uses psychological manipulation tactics to exploit the natural tendencies of human trust and curiosity.

Recent: Trust is key to crypto exchange sustainability — CoinDCX CEO

Cybercriminals in the cryptocurrency industry often aim to steal self-held assets by taking control of high-profile accounts. “Between May and August 2022, social media account takeovers — involving Twitter, Discord and Telegram — have wreaked havoc. Scammers post malicious NFT phishing links during those attacks, compromising high-profile social media accounts,” said Boucher

Once these attackers have gained access to a high-profile account, they typically use it to send out phishing messages or other types of malicious communications to a large number of people, attempting to trick them into giving up their private keys, login credentials or other sensitive information.

The end goal is to gain access to self-custodied assets and steal the cryptocurrency held by the individual.

Followers of these high-profile accounts may be tricked into clicking on malicious links that transfer all of the tokens out of their wallets. These scams may also be designed to have users invest on a trading platform and often result in victims losing their deposits with no way to recover them:

“The volume of scams, hacks, blackmails and other fraudulent activity has been growing exponentially over the last few years. Most fake platforms appear to be either Ponzi schemes or payout scams with the following characteristics: They advertise fake returns, have referral incentives that resemble pyramid schemes or impersonate existing legitimate trading platforms.”

Scammers utilizing these phishing tactics can encourage users to sign smart contracts that drain their assets without their consent. A smart contract is a self-executing contract with the terms of the agreement between buyer and seller directly written into the code.

If the contract contains errors or is designed to take advantage of people, users may end up losing their tokens. For example, if it allows its creator to take possession of tokens to sell them, users may lose cryptocurrency by signing it.

Most of the time, users don’t know they’ve lost their tokens until it is too late.

Recent: Congress may be ‘ungovernable,’ but US could see crypto legislation in 2023

Self-custody can be a great way to take control of one’s assets, but it’s crucial to understand the risks and to take steps to protect oneself from bad actors.

To protect oneself when using a self-custody wallet, it is important to follow the best practices, such as keeping software up to date and using unique passwords. It is also crucial to use hardware wallets such as a Ledger or Trezor to store your cryptocurrency. Hardware wallets are physical devices that store your private keys offline, meaning a hacker also needs physical access to engage in certain interactions with the blockchain, making them less susceptible to getting hacked.

Tags
Related Posts
Cardano Foundation Warns About Suspicious Activities in Japan
The Cardano Foundation — the organization behind major cryptocurrency Cardano (ADA) — warned that a suspicious firm is trying to rake in investments by claiming it has contacts with the foundation. On July 9, the foundation stated that someone claiming to be from or contracted by crypto exchange BTCNEXT professes to personally know the Cardano core members as a way to reassure that investments will be safe. A BTCNEXT representative told Cointelegraph that the person in question does not have any relationship with the company. In fact, she said that they are familiar with the individual behind the claims and …
Altcoin / July 9, 2020
Crypto giants co-launch Chainabuse platform to water down rising scams
Seven major crypto companies — Binance.US, Circle, Solana Foundation, The Aave Companies, Hedera, TRM Labs and Civic — joined hands to launch a community-driven scam reporting tool. Named Chainabuse, the tool aims to enable crypto users to issue warnings and discuss ongoing fraudulent activity such as scams and hacks in real-time. Launched on Wednesday, the Chainabuse platform aims to counter the ongoing scams plaguing the crypto ecosystem. On May 4, Cointelegraph warned the community about the rise in Ape-themed airdrop phishing scams. Chainabuse serves as a one-stop-shop platform for crypto users, victims of financial crimes and crypto businesses to actively …
Adoption / May 18, 2022
Mastercard launches new crypto fraud protection tool
The financial service provider Mastercard will launch a new crypto service related to risk management on Tuesday Oct. 3. Mastercard’s new service, Crypto Secure, is aimed to help banks find and prevent fraud on crypto merchant platforms. Crypto Secure combines the usage of artificial intelligence, blockchain data and public records of crypto transactions, along with other sources, to determine crime-related risks of crypto exchanges within the Mastercard network. Mastercard already has a similar service with fiat currency transactions available to banks. The president of cyber and intelligence business for Mastercard, Ajay Bhalla, said this development helps its partners stay compliant …
Adoption / Oct. 4, 2022
Happy Halloween: The five spookiest stories in crypto in 2022
After over 13 years of ups and downs, this year stands out for having the most turbulent bear market in the history of crypto. Owing to a mix of factors — that include regulatory clearances across the globe and improved credibility among projects that survived the bear market — the world of crypto marked numerous milestones this year. However, certain events in 2022 could raise goosebumps on the toughest diamond hands out there. Moreover, it was impressive to see crypto projects, in many cases helping each other, bounce back through an era of uncertainty. Acknowledging the spookiest events this Halloween, …
Adoption / Oct. 31, 2022
Class action against Kim K, Mayweather over EMAX dismissed… for now
A federal judge in California has dismissed a class action lawsuit against reality TV star Kim Kardashian, boxing champ Floyd Mayweather and the founders of EthereumMax, explaining that the submissions failed to meet the “heightened pleading standards” for fraud claims. The judge has, however, left room for the plaintiffs to refile the proposed class action lawsuit if certain provisions are amended. In the original Jan. 7 court filing submitted by Scott + Scott Attorneys At Law, the plaintiffs argued that Kardashian, Mayweather, and also former NBA superstar Paul Pierce didn’t disclose they were being paid to promote EthereumMax (EMAX). The …
Adoption / Dec. 8, 2022