Know and protect yourself from cryptocurrency scams

Phil Muncaster, guest writer from ESET explains that as you attempt to strike it rich in the digital gold rush, make sure you know how to recognize various schemes that want to part you from your digital coins

In reality, if you’re interested in cryptocurrency today, you’re quite possibly at a major risk for fraud. This is the new Wild West – a lawless, unregulated world where bad actors often have the upper hand. But normal rules for fraud prevention apply here too. Everything you read online should be carefully scrutinized and fact-checked. Don’t believe the hype and you’ll stand a great chance of staying safe.

Why are cryptocurrency scams on the rise?
Fraudsters are past masters at using current events and buzzy trends to trick their victims. And they don’t come much more “zeitgeist-y” than cryptocurrency. Media stories and social media posts are partly to blame, creating a feedback loop that only adds to the hysteria over virtual currencies. The result? Between October 2020 and May 2021, Americans lost an estimated $80m (€71m) to thousands of cryptocurrency scams, according to the FTC. In the UK, the figure is even higher: police claim that victims lost over £146m (€172m) in the first nine months of 2021.

Why are scams on the rise? Because:

  • There are few if any regulations governing the cryptocurrency market for investors, versus the traditional stock market
  • Huge media interest makes it a regular hook for phishing and scams
  • Soaring cryptocurrency prices attract consumers dreaming of getting rich quick
  • Social media helps to amplify the buzz, real or fictional
  • There’s also the lure of mining coins for money which phishers can use as a hook

What are the most common cryptocurrency scams?
If you have virtual money safely stored in a cryptocurrency exchange, it may be at risk from hackers. On numerous occasions threat actors have successfully managed to extract funds from these businesses, sometimes making off with hundreds of millions. However, usually the breached companies will promise to recompense their blameless customers. Unfortunately, there are no such assurances for the victims of cryptocurrency fraud. Fall for a scam and you may be out-of-pocket for a lot of money.

It pays to understand what these scams look like. Here are some of the most common:

Ponzi schemes
This is a type of investment scam where victims are tricked into investing in a non-existent company or a “get rich quick scheme,” which in fact is doing nothing but lining the pocket of the fraudster. Cryptocurrency is ideal for this as fraudsters are always inventing new, unspecified ‘cutting edge’ technology to attract investors and generate larger virtual profits. Falsifying the data is easy when the currency is virtual anyway.

Pump and dump
Scammers encourage investors to buy shares in little-known cryptocurrency companies, based on false information. The share price subsequently rises and the fraudster sells their own shares, making a tidy profit and leaving the victim with worthless stocks.

Fake celebrity endorsements
Scammers hijack celebrity social media accounts or create fake ones, and encourage followers to invest in fake schemes like the ones above. In one ploy, some $2m was lost to scammers who even name-dropped Elon Musk into a Bitcoin address in order to make the ruse more trustworthy.

Fake exchanges
Fraudsters send emails or post social media messages promising access to virtual cash stored in cryptocurrency exchanges. The only catch is the user must usually pay a small fee first. The exchange doesn’t exist and their money is lost forever.

Impostor apps
Cybercriminals spoof legitimate cryptocurrency apps and upload them to app stores. If you install one it could steal your personal and financial details or implant malware on your device. Others may trick users into paying for non-existent services, or try to steal logins for your cryptocurrency wallet.

Bogus press releases
Sometimes the scammers even manage to fool journalists, who republish fake information. This happened on two occasions when legitimate news sites wrote stories about big-name retailers preparing to accept certain cryptocurrencies. The fake press releases that these stories were based on were part of pump-and-dump schemes designed to make the fraudsters’ shares in the mentioned currencies more valuable.

Phishing/impersonation
Phishing is one of the most popular ways fraudsters operate. Emails, texts and social media messages are spoofed to appear as if sent from a legitimate, trusted source. Sometimes that “source” – for example, a credit card provider, bank or government official—requests payment for something in cryptocurrency. They’ll try to hurry you into acting without thinking.

How you can avoid falling victim
The best weapon to fight fraud is incredulity. Unfortunately, we live in an age when not everything we read online is true. And quite a lot of it is explicitly crafted to trick and harm us. With that in mind, try the following to avoid getting scammed:

  • Never provide your personal details to an entity that makes unsolicited contact with you, via email, text, social media etc. It may even appear to be your friend, but in reality could be a hacker who has hijacked their email or social account. Check with them separately via another contact method
  • If something is too good to be true it usually is. Treat any investment schemes with a heavy pinch of salt
  • Switch on two-factor authentication for any cryptocurrency account you have
  • Dismiss any investment ‘opportunity’ which requires an up-front payment
  • Never use unofficial app stores
  • Download anti-malware software from a reputable provider to your PC and mobile devices

The world may have gone cryptocurrency-crazy. But you don’t need to join in. Keep a cool head and ride out the hype.