How to Avoid Phishing Scams in Crypto
Phishing — tricking you into entering credentials or signing a malicious transaction on a fake site — is the single most common way crypto is stolen. The attacks are getting slicker, but the defences are simple once you know them.
How crypto phishing works
You click a link (from an ad, email, DM or fake search result) that leads to a near-perfect clone of a real site — a wallet, exchange or “airdrop claim.” You either enter your seed phrase (game over) or connect your wallet and approve a transaction that drains it.
Red flags
- Unsolicited links. Emails/DMs saying “verify your wallet” or “claim now.”
- Look-alike domains. Tiny misspellings or wrong extensions.
- Urgency. “Your account will be locked” / “offer ends in 10 minutes.”
- Requests for your seed phrase. Always a scam, no exceptions.
- Sponsored search ads impersonating real services.
How to protect yourself
- Bookmark the real sites you use and only enter through your bookmarks.
- Never enter your seed phrase online — ever.
- Check exactly what a transaction does before signing; reject “unlimited approval” requests you don't understand.
- Revoke unused token approvals periodically.
Stay one step ahead
A lot of phishing pushes a specific scam token. With ChainInspector Suite you can scan that token and see the risk — running entirely on your own PC, so your data stays private.
Check any token in seconds
ChainInspector Suite runs every on-chain safety check for you and gives one clear risk score — privately, on your own PC.
Get ChainInspector Suite