How to spot a crypto scam: a beginner's field guide
Crypto scams aren't clever, they're just persistent — and they all lean on the same few human levers: greed, fear, urgency, and the wish to be rescued. Once you can name the handful of patterns a beginner actually runs into, they get a lot easier to walk past. Here's the field guide: each common scam, the red flag that gives it away, how to verify before you act, and where to report it if you're hit.
A quick reframe before the list. You don't need to memorise every scam ever invented — new wrappers appear constantly, but the machinery underneath barely changes. Almost every crypto scam is one of two things: a trick to make you type a secret into a fake place, or a story to make you send money you'll never see again. If you keep those two shapes in mind, even an unfamiliar scam tends to rhyme with something you already recognise. The patterns below are the ones that catch beginners most, roughly in the order you're likely to meet them.
Before acting on any crypto opportunity or message, ask: "Am I being asked to send crypto, or to enter a secret, because someone created urgency or excitement?" and "Did I reach this myself, or did it reach me?" If the answer points to a shortcut someone handed you, stop and verify on your own terms. Scams die the moment you slow down.
Fake exchanges and apps
This is the most basic scam and still one of the most effective. Someone builds a website or app that looks exactly like a real exchange or wallet — same logo, same layout, an address one character off the genuine one — and gets you to log in. Your username, password, and even your 2FA code flow straight to them, and your real account is drained. A nastier variant is a fully fake "exchange" that lets you deposit and shows your balance growing, but quietly blocks every withdrawal; the numbers on screen are theatre.
Red flags: you arrived via a link in a DM, ad, or search result rather than typing the address yourself; the domain is subtly misspelled or has an odd extra word; the app isn't the official listing in your phone's store; you can deposit easily but withdrawals are "pending," "under review," or require a surprise "tax" or "fee" paid upfront before you can cash out.
How to verify: only ever reach an exchange by typing the address, using a bookmark you made, or opening the official app from the app store — and check the developer name and review history. Before entering anything, read the address bar character by character. A real exchange never asks you to pre-pay a fee to release your own withdrawal; that "release fee" is the scam's final squeeze. If you're choosing where to start, stick to large, well-known platforms with a long public track record, and see our honest comparison of beginner exchanges rather than whatever an ad pushed at you.
Romance and "pig-butchering" investment scams
This is the one that does the most financial damage, and it's painful because it starts as friendship or romance, not finance. A stranger connects with you — a wrong-number text that turns chatty, a dating-app match, a warm new contact on social media. Over days or weeks they build genuine-feeling rapport, then casually mention how well they're doing with a crypto "investment platform" or a special trading tip from an "uncle" or mentor. Eventually they help you sign up to a slick-looking platform (fake), where your deposits appear to grow nicely. You're encouraged to put in more. When you try to withdraw, there's always a reason you can't — a tax, a fee, a verification deposit — and the money is already gone. The grim industry nickname, "pig butchering," describes fattening the victim before the kill.
Red flags: someone you met online, whom you've never met in person, steers the conversation toward crypto investing; they show screenshots of big gains; they have an exclusive platform, app, or tip; there's gentle pressure to deposit more and act fast; and the moment you try to take money out, new fees or taxes appear. A refusal to ever video-call, or a story that always has a reason not to meet, is a strong tell.
How to verify: treat any investment advice from someone you only know online as a scam by default, no matter how warm or real the relationship feels — that warmth is the product. Never use a trading platform someone introduced you to personally; choose your own from a reputable, well-known list. And remember the iron rule of withdrawals: a legitimate platform never demands an upfront fee or "tax" before releasing money you already deposited. The FTC's overview of cryptocurrency scams and the FBI's guidance on internet crime (IC3) both document this pattern in detail, and reporting it helps.
Giveaway and airdrop scams
You see a post, video, livestream, or ad — often hijacking a famous name or company — promising that if you send some crypto to an address, you'll get double (or more) back. Or a "limited airdrop" invites you to connect your wallet and approve a transaction to "claim" free tokens. The first is a flat-out theft: any "send to receive more" mechanic is a one-way trip, with nothing ever coming back. The second is sneakier — what you actually approve is permission for the scammer's contract to move tokens out of your wallet.
Red flags: free money in exchange for sending crypto first; a countdown or "only 100 spots left" urgency; a celebrity or brand endorsement that you can't independently confirm; a "claim" page that wants you to connect your wallet and sign or approve something you don't understand.
How to verify: the math alone settles it — nobody multiplies your crypto for free, so never send funds to receive more, ever. For airdrops, never approve a wallet transaction on a site you didn't reach yourself and don't fully understand; legitimate claims don't need open-ended spending permissions. If a giveaway claims to be from a real person or company, go to that company's official channel directly and you'll find no such offer. Our security guide for beginners covers how wallet approvals work and how to revoke ones you've granted.
Fake support and impersonation
You post a question or a complaint in a public group or social channel, and within minutes a helpful "support agent" messages you privately. They're a scammer who watches those channels for exactly this. The script: they'll "help" you fix your issue, then ask for your password, your 2FA code, or your seed phrase, or tell you to move funds to a "safe wallet" for protection. Some run fake support phone lines and websites that rank in search results, so even a person who goes looking for help can land on the wrong one.
Red flags: support contacts you first, especially by DM after you posted publicly; anyone asks for your password, 2FA code, recovery phrase, or remote access to your device; you're told to move your crypto to a "secure" wallet they name; the "support" account is a lookalike with a slightly off handle.
How to verify: real support never DMs you first and never needs your secrets to help you. Only ever start a support conversation from inside the official app or from the real website you reached yourself — never from a search ad, a link, or someone who approached you. No legitimate company will ever ask for your seed phrase or 2FA code; that request alone proves it's a scam. If someone is pressuring you to move funds "for safety," that's the theft, not the rescue. A related trick worth knowing: scammers will impersonate not just support but well-known figures, project founders, or even friends whose accounts have been hacked, all to borrow the trust attached to a familiar name. When a message asks for money or secrets, judge it on what it asks for, not on whose name is attached — a real person you know will understand you double-checking through another channel before you act.
Your seed phrase, your 2FA code, and your password. No real exchange, wallet, support agent, or official will ever ask you to share any of these — not to verify you, not to fix an issue, not to release a withdrawal, not for any reason. The instant someone asks, you're talking to a scammer. There is no exception to this.
Phishing links and urgent messages
An email, text, or DM warns that your account is locked, a withdrawal is pending, your wallet needs "validation," or you must "verify immediately" — with a handy link to sort it out. The link goes to a fake login page that harvests whatever you type. The engine here is urgency: panic makes people skip the checks they'd normally make.
Red flags: a message creating time pressure ("act within 24 hours or your account is frozen"); a link to log in or "verify"; sender addresses or URLs that are slightly wrong; spelling and grammar that's a touch off; a request to confirm sensitive details.
How to verify: never act on the link. Open the official app or type the site address yourself, log in, and check — if there's a real issue you'll see it, and if there isn't, you just dodged a hook. Set an anti-phishing code in your exchange settings so genuine emails carry a secret phrase you chose; an email missing it is fake on sight. The U.S. cybersecurity agency's guide to recognising phishing is a solid, neutral primer on the tells.
"Guaranteed return" Ponzi and HYIP schemes
Some scams skip the trickery and just promise the impossible: a platform, fund, "trading bot," or "staking" program offering fixed, guaranteed returns — 1% a day, 300% a year, "risk-free" yields that real markets never produce. Early "investors" may even get paid, with money from later investors, which builds trust and word-of-mouth. That's the classic Ponzi structure: there's no real underlying business, just new deposits paying old ones, until the inflow slows and the whole thing collapses, taking everyone's principal with it. The crypto wrapper (high-yield "DeFi" branding, a polished app, a charismatic founder) is just modern paint on a very old machine.
Red flags: guaranteed or fixed high returns, especially anything described as "risk-free"; pressure to recruit friends for bonuses (a pyramid tell); vague or buzzword-heavy explanations of how the money is actually made; difficulty withdrawing once you're in; and returns that are suspiciously smooth, with no down days, which real markets never have.
How to verify: internalise that no legitimate investment guarantees returns — genuine markets carry risk, and crypto is among the more volatile, where you can lose money. So any "guaranteed" or "risk-free" yield is, by definition, a lie. If you can't get a clear, specific answer to "where does the return actually come from," assume the answer is "from new depositors like you." The U.S. Securities and Exchange Commission keeps an investor-education page on Ponzi schemes, and Investopedia's explainer walks through how they unravel. When you do invest, do it on your own terms with money you can afford to lose, and size positions sensibly — our position size calculator helps keep any single bet from being one you can't walk away from.
A quick pre-flight check before you act
When something crypto-related lands in front of you — an offer, a message, a platform, a "great opportunity" — run it through this short checklist before you do anything irreversible. It takes thirty seconds and catches nearly everything.
- Did it reach me, or did I reach it? Unsolicited contact and links are the default home of scams. If a stranger or a message brought it to you, raise your guard.
- Is there manufactured urgency or excitement? "Act now," "limited spots," "guaranteed," "double your money" — pressure is the scammer's main tool. Real opportunities survive you sleeping on them.
- Am I being asked to send crypto, or enter a secret? Sending funds to receive more, or typing a seed phrase / 2FA code / password anywhere, are the two core scam moves. Either one is a hard stop.
- Can I verify it independently? Reach the real company through its official channel, check the exact web address yourself, and look the claim up. If verifying makes the offer evaporate, it was never real.
- Does it promise something markets can't? Guaranteed or risk-free returns don't exist. Crypto is volatile and you can lose money — anyone claiming otherwise is selling a lie.
None of this requires expertise. It requires the willingness to be a little boring and a little slow at the exact moment a scammer wants you fast and excited. That single habit is worth more than any tool. If you want the broader set of protective settings — app-based 2FA, withdrawal whitelists, anti-phishing codes — they live in our full security guide for beginners, and they back you up on the day your guard slips.
Where to report it
If you've been scammed, or even just targeted, reporting matters — it builds the record investigators use, can sometimes help freeze funds if you move fast, and warns others. First, lock down your accounts (change passwords, reset 2FA, freeze the account if you can) using the steps in our security guide. Then report to the right places:
- The platform involved. Tell your exchange or wallet provider through official support immediately; they may be able to flag or halt activity.
- United States: the FTC at reportfraud.ftc.gov, and the FBI's Internet Crime Complaint Center at ic3.gov. Investment-fraud cases can also go to the SEC.
- United Kingdom: Action Fraud (actionfraud.police.uk).
- Elsewhere: your national consumer-protection agency, financial regulator, or cybercrime police unit. A quick search for your country plus "report fraud" finds the official channel.
One last, hard truth that's also a kind of protection: after a loss, a second wave of scammers advertises "recovery services" that promise to get your money back for an upfront fee. They can't, and they're just robbing you again. Stolen crypto is almost never recovered by a private service, because transactions are irreversible. Report through the official channels above, and never pay a stranger who messages you promising recovery. The best defence remains the cheap one — the calm, slightly suspicious habits at the top of this page, applied before the money ever leaves your hands.