Cryptocurrency Scams

Learn more about crypto and and how scammers use it to take advantage of you.

Step 1:Recognize

Red Flags of a Crypto Scam

There are a few things to look out for that may indicate you’re involved in a cryptocurrency scam:

  • Guaranteed low risk, high return. Scammers will claim that you can quickly make money with little to no risk. They may use terms like “risk free” or “zero risk”. Beware of anyone who claims you will receive high rates of return with little or no risk. No investment is completely risk free.
  • Use of complex concepts and terms. Scammers take advantage of the fact that most people don’t know much about cryptocurrency. They will use crypto lingo that is difficult to understand, and make sales pitches that are confusing.
  • Urgency and threats. Scammers will urge you to take action now in an effort to get you to act without thinking. They may even threaten you if you don’t comply with their demands.
  • Unbelievable offers. If the offer seems too good to be true, it probably is.
  • Unconventional payment methods. They ask you to pay a fee, fine, or taxes using cryptocurrency.

Step 2:Immediate Actions

If you think you may have been the victim of a crypto scam, it is important to take action right away to protect yourself and your finances. Unfortunately, if you paid a scammer using cryptocurrency, you won’t be able to get your money back. However, there are still steps you can take if you think you have been scammed:

  • If you provided login credentials to your crypto wallet, change your password immediately and set up multi factor authentication.
  • If the private key to your crypto wallet was stolen, you need to move all of your cryptocurrency to a new wallet immediately.
  • If you provided financial information to buy cryptocurrency, such as your credit card number or bank account information, contact your bank or credit card company right away. They can help you take care of any compromised accounts and unauthorized transactions.
  • If you shared personal information, like your Social Security number, you may be at risk for identity theft. Keep an eye on your credit report and financial accounts for any unusual activity, and consider placing a freeze on your credit.
  • If you believe that someone stole your cryptocurrency using malicious software, run full system scans on your devices. If you find malware, visit our malware page for help removing the malware.

Step 3:Report

Reporting any type of cybercrime, including a crypto scam, is imperative to help others avoid being scammed. As a society, the more people that report online scams and fraud, the more national reporting data that is collected, and the better chance law enforcement has to catch the criminals and decrease cybercrime.

Step 4:Recover

Learn the Three Golden Rules to Spot a Scam

Scammers often utilize tactics to encourage you to act quickly and will use false information to persuade you to send money or personally identifiable information (PII). When faced with a questionable situation online, always follow the three golden rules to spot a scam:

Slow it down — Scammers often create a sense of urgency, being pushy or aggressive. Take your time and ask questions to avoid being rushed into a bad situation.

Spot check — Do your research to double check that the person is who they say they are. If you are looking at investing, use resources like the BrokerCheck by FINRA, which can tell you whether a person or firm is registered to sell investments and/or offer investment advice. If someone contacts you claiming to be from a government agency or utility company, look up their contact information on their official webpage and contact them directly.

Stop! Don’t send — Never share your crypto wallet login credentials or private keys with anyone. If someone insists that you pay them in the form of cryptocurrency, it’s a scam.

Take 5 Steps for Better Online Security

Along with making sure you follow the three golden rules to spot a scam, it’s important to strengthen your online security to help avoid all types of online scams. Take action to improve your digital posture by following these steps:

  1. Implement Multi Factor Authentication (MFA): Passwords are generally easy for scammers to crack, and even if you use strong passphrases, there’s still the possibility that a cybercriminal can obtain your passphrase in a data breach. Implementing MFA is a great way to maximize your security and ensure that you are the only one who can gain access to your accounts. MFA should be implemented on all accounts where it is available. Check your account’s security settings to see if it is something you can set up.
  2. Update Your Privacy Settings: Privacy settings allow you to control your personal information (name, address, phone number, date of birth, financial details, photos or videos, etc) and how that information is used. Review your privacy settings on all of your accounts including your social media accounts. Consider restricting who can see your friends list, contacts, photos and posts.
  3. Activate Automatic Updates: Automatic updates are a set of changes to an app, software or operating system that are automatically pushed by the developer to fix or improve it. Oftentimes, cybercriminals take advantage of security flaws to plant malicious software on your devices. By activating automatic updates, you will automatically patch security vulnerabilities to protect your data.
  4. Use a Password Manager or Create Strong Passphrases: A password manager is a software tool that securely stores all of your login credentials in one place, allowing you to create and manage strong, unique passwords for all of your accounts. If you are unable to afford a password manager, use strong passphrases. A passphrase is a combination of random words or a sentence that is much longer and more complex than a typical password. Using a passphrase instead of a password makes it much harder for hackers to guess or brute-force their way into your accounts.
  5. Learn the Elements of a Phishing Attempt: Familiarize yourself with the elements of a phishing email. Phishing emails tend to include a sense of urgency and multiple grammar and spelling errors. If they are asking you to reveal personal information, be suspicious. If you get a strange email, try contacting the company another way to confirm they sent that email. If the email is suspicious, mark it as spam.

TestimonialHear from Other Victims

Without, I don't know if I would have been able to react as quickly to protect my personal information.
Mary - Indianapolis, IN