Avoid Scams

7 Crypto Scams Beginners Fall For (and How to Spot Them)

I have had one of those messages land in my own inbox: the profile photo of a polished “exchange security officer”, opening with a very polite “we have detected an unusual login on your account, please cooperate with verification”, followed by a link that looks very official. If I had not been doing this for years, I might not have caught it at a glance: the domain had one extra letter compared to the real site. Crypto scams catch people off guard not because they are brilliant, but because they strike at the exact moment you are panicked, greedy, or too polite to say no.

This guide lays out the kinds of crypto scams beginners run into most: what they look like, the red flags you should clock right away, how to dodge them ahead of time, and, just as important, what to do first if you have already been caught, so you can stop the bleeding and keep your records. I try to explain the structure of the playbook, because the wording changes every year while the underlying logic barely moves. Once you can recognise the structure, you can see through it no matter how the surface changes.

Let me be upfront first: this guide will not tell you that some specific platform, project, or person is a scammer. That would be neither responsible nor helpful. What I describe are the types, the reusable patterns: the “fake support agent”, the “cloned official site”, the “group with inside info”. What you should walk away with is not a blacklist, but a way of judging that you can apply yourself.

Why beginners are the favorite target

Before we pull apart the individual scams, sit with one question: why is it almost always beginners who get burned? Once you understand that, you will actually take the precautions seriously instead of treating them as a chore.

First, beginners have no baseline for what “normal” looks like. Veterans know an exchange never DMs you for a verification code, know a real airdrop never asks you to send a “fee” first, and know that nothing falls from the sky paying tens of percent a year with no risk. A beginner has none of that common sense, so they believe whatever the scammer says, because they have no internal ruler for “is this normal or not”. A big part of what this article is trying to do is help you build that ruler.

Second, beginners are torn between fear of missing out and fear of trouble, which makes their emotions easy to play. Crypto naturally produces two strong feelings: one is FOMO, the sense that everyone is making money while you are the only one not on board, an anxiety that leaves you with no resistance to “double your money fast” pitches; the other is panic, where a single “your account is at risk” or “it will be frozen unless you act” throws you off balance. Almost every scam pitch is pulling on one of these two strings. If you can pause for three seconds when your emotions spike, you have already dodged most of it.

Third, the nature of crypto gives scammers an opening. On-chain transfers usually cannot be reversed; there is no bank-style “undo” button, and the anonymity makes tracing hard. That means once the money leaves, getting it back is extremely difficult. This is not meant to scare you off crypto; it is to make you understand that in the crypto world, prevention carries far more weight than it does in traditional finance.

Tip · One habit that blocks most scams

Whenever a message pushes you to act right now, to transfer immediately, click immediately, hand over a code immediately, stop and treat it as suspicious by default. Legitimate platforms and legitimate support agents almost never create that kind of time pressure. It is the scammer who needs you to have no time to think. Train yourself to slow down exactly when things feel urgent, and you are already halfway to safe.

Romance scams: from a relationship to your money

This kind of scam is often called “pig butchering”, an ugly name but a vivid one: the scammer treats you like an animal to be fattened up before slaughter. The whole playbook runs long and is carefully designed, aimed squarely at our need for affection and trust, and the losses it causes tend to be the heaviest of all. It is not one platform or one person; it is an entire scripted operation with a division of labour behind it.

How it usually unfolds

It often starts with nothing to do with crypto. It might be a well-spoken, good-looking stranger on a dating app, an online acquaintance you fall into talking to after a “wrong group” or “wrong message” mix-up, or what looks like a genuine romance or friendship. At this stage the other person mentions no money and no investing; they simply build a bond with you patiently, check in on you, chat with you, and grow the trust bit by bit. This “fattening” can run for weeks or even months.

Once the trust is more or less established, they will “casually” let slip that they have made money from some kind of crypto investment, that they have an “inside channel”, a “sure-win method”, or a “mentor who calls the trades”. At first they do not push you; they even come across as restrained, maybe telling you not to rush, precisely to lower your guard. Then they walk you into a professional-looking platform or group and have you start small to test the water.

Here is the nastiest part: early on you really do “make money”, and you can withdraw it without trouble. That is a carefully designed bait, meant to make you fully believe the platform is solid and that this person genuinely wants to help you profit. Having tasted the reward, you scale up on your own, sometimes borrowing or putting up collateral to invest. Then one day, when you try to withdraw a larger amount of principal, the platform starts demanding more payments under various names: “tax”, “unfreezing fee”, “you broke a rule and need margin”. You sink deeper and deeper, until the platform vanishes and the person disappears along with it.

Red flags · Romance scam

A stranger reaches out to you, builds a relationship first and brings up “sure-win investing” later; they steer you to a platform you have never heard of that you can only reach through a link they give you; you get an easy win and a smooth withdrawal early on; after that they keep nudging you to put in more; and when you try to withdraw a large sum, you are told to pay a “tax” or “margin” first to unfreeze it. When these show up together, you can be almost certain it is a pig-butchering scam. Stop immediately and do not put in another cent.

How to dodge it

Hold on to one plain principle: keep feelings and money in separate boxes. Anyone who ties “our relationship” to “you should invest alongside me”, however sweetly they put it, deserves your highest suspicion. Someone who truly cares about you will not use your savings to test that bond. On top of that, any platform you can “only get into through a link from one person” or that “needs you to pay before you can withdraw” is not normal. Legitimate exchanges are open; anyone can search for the official site and sign up directly, with no one needing to “bring you in”. When people I have known got hit by this, looking back, every red flag had actually been there at the time; the feelings just covered them up.

Fake support and impersonators: panic first

If romance scams run on grooming, fake-support scams run on fear. The core move is to impersonate an authority, manufacture urgency, and get you to hand over control of your account while you are rattled. This kind of scam comes in many shapes, but the skeleton is remarkably consistent.

The usual disguises

Whatever the disguise, the goal is the same: to get your password, your verification code, your seed phrase, or to nudge you into transferring money yourself. The shared tactic is to first manufacture the panic that “you are in big trouble”, then play “the only person who can save you”, so you have no room left to think.

Red flags · Fake support

A “support agent” who reaches out to you first (real support almost only replies through the official ticket you submitted); an opening that manufactures urgency and panic (“about to be frozen”, “act now”); a request for any one of your password, verification code, or seed phrase; an instruction to move money to a “safe account” or some address; a link telling you to “log in and verify”. Even one of these is basically a scammer.

One iron rule, burned into memory

A real platform will never ask you for your login password or your SMS / authenticator code, let alone your wallet seed phrase or private key. Those things are the master keys to your account and your assets, and anyone who asks for them, even someone claiming to be the CEO, is a scammer, with no exceptions. Verification codes and seed phrases are only ever typed on a device you are operating yourself; you never read them out or send them to any “person”. Treat that as a line you will not cross, and the fake-support script falls apart. For more on how these “fake support” plays work, official anti-fraud resources cover them well, and it is worth reading the Binance Academy account-security guide to run the common pitches through your head in advance.

Cloned exchanges, phishing sites and fake apps

This kind of scam does not chat with you; it simply disguises itself as something you already trust and waits for you to take the bait. It looks high-tech, but two or three habits will keep you clear of the vast majority of it.

Phishing sites: an “official site” that is one letter off

Scammers build a site that looks almost identical to the real exchange, copying the colours, the logo, and the layout, with only a tiny difference in the domain: an extra letter, the letter o swapped for the number 0, or a lookalike suffix. Type your username and password into that fake site and you have handed over the keys directly. These fakes spread through search-engine ads, links forwarded in groups, and buttons inside emails; the landing page is convincing enough that a beginner can rarely tell on the spot.

The key to staying safe comes down to one line: watch the domain spelling in the address bar. Do not log in to an exchange through a link someone sent you or a search ad; make a habit of typing the official address yourself or using a browser bookmark. Once the page loads, check the domain letter by letter and confirm there are no extra letters, swapped characters, or odd suffixes. If you are unsure whether a link is phishing, you can check it against the common signs in a security agency’s guidance, such as the FTC guide on recognising phishing scams; it covers phishing in general, but the way it teaches you to spot it carries over completely.

Fake apps: a “client” that is not in the official store

Another version is a fake mobile app. It might sit on some third-party download site, or a link might tell you to “install the latest client”; once installed, the interface looks just like the real app, but in the background it is stealing your username and password, or moving your assets outright. There is also the variant that lures you into installing a tool that can remotely control your phone, dressed up as “helping you operate it”.

The principle is just as simple: only install an app from the official app store or the official download link on the exchange’s own site, never install a package from an unknown source, and never install a “remote assistance / screen sharing” tool at anyone’s request. Once you hand over remote control, everything on your phone, including your verification codes and your wallet, is right under the other person’s eyes.

Red flags · Cloning and phishing

Logging in to an “official site” you reached through a forwarded link or a search ad; a domain with extra letters, numbers standing in for letters, or a strange suffix; being told to download an app package from outside the official store; being asked to install a “remote assistance” or “screen sharing” tool to “help you operate”; a page pushing you to “verify within a time limit or be frozen”. Any one of these should make you exit at once and go back in through the official entry point.

Because this step runs deep, your very first account sign-up is exactly when you should stick to legitimate channels and the official app. Our sign-up guide walks through how to check that the page you land on is the real official site, and which security settings to turn on the moment you finish signing up; it pairs well with this.

High-yield offers, money games and Ponzi schemes

This kind of scam is the oldest, and the one most often reborn in new clothing. It does not rely on disguise or on intimidation; it relies on one thing only: your desire for a high return. It gets dressed up under all sorts of trendy names: “on-chain wealth management”, “quant trading bots”, “mining-rig rental”, “node dividends”, “high-interest stablecoin deposits”. But the core is always the same: it pays the earlier entrants with the money of the later ones, manufacturing the illusion that real money is being made, right up until it collapses.

What money games have in common

On why a Ponzi scheme is doomed to collapse and what its mathematical structure looks like, regulators and financial-education sites explain it thoroughly, for example the US SEC investor-education page on Ponzi schemes. Once you grasp the structure, you will find that no matter what new concept this kind of scam wraps itself in, you can recognise the core at a glance.

Red flags · Money games / Ponzi

A promise of “guaranteed principal” and “sure profit” with absurdly high returns; returns that come mainly from recruiting and tiered commissions; no clear answer on where the money actually comes from; constant pressure to put in more and bring in others; and normal payouts and withdrawals early on (the fattening stage). When you see the combination of “high return + low risk + recruiting”, you can basically call it a money game; the farther away you stay, the better.

One line to keep you safe

Remember this: return and risk always move together; there is no offer that is high, steady, and risk-free all at once. When someone guarantees you a “high return that is sure to profit and never lose”, either they are deceiving you, or they have been deceived themselves. Learning how to assess real investment risk and manage your money is far more reliable than hunting for a “shortcut to riches”. That is exactly why we keep stressing it: how much to put in, how to size your positions, how much of a drawdown you can stand are homework to do before you invest, not while a sales pitch pushes you along.

Fake airdrops and wallet-approval traps

Once you start dealing with the on-chain world and using a self-custody wallet, you will meet a more “technical” kind of scam. It does not want your password; instead it lures you into signing an approval with your own hand, handing over control of your wallet. Many people, at the moment their money is swept away, have no idea when they ever “agreed” to it.

How a fake airdrop hooks you

Airdrops themselves are real: some projects hand out tokens to users for free, and scammers exploit exactly that idea. The common play is this: some “airdrop tokens” mysteriously show up in your wallet, or you see a “limited-time airdrop” promotion on social media. You are drawn to a site to “claim” it, and the site asks you to connect your wallet and sign an approval. The trap is in that approval: it looks like “claiming the airdrop” or “verifying your eligibility”, but what it actually grants is permission to move a certain asset out of your wallet. Once you sign, the other side can quietly drain whatever coins fall within that approval.

Key concept: an approval is not a transfer, but it is just as dangerous

On-chain, many actions require you to first “approve” some contract to use a particular token of yours. That is a normal mechanism, but scammers disguise a malicious approval as a harmless action. More insidiously, some malicious approvals request an “unlimited allowance”, which means the other side could in theory move your entire balance of that token. So: never sign an approval you do not understand, and refuse any unknown site that asks you to connect your wallet and sign. If you cannot make sense of what is in the signing box, treat it as dangerous.

The good news is that approvals can be checked, and they can be revoked. Block explorers and some wallet-security tools offer a “view and revoke token approvals” feature. You can use the Token Approvals tool in the block explorer for the relevant chain (such as Etherscan on Ethereum) to see which contracts your wallet has granted approvals to, and revoke the ones you do not recognise or no longer need. Giving your approval list a regular checkup is a habit anyone using an on-chain wallet should build. For a fuller understanding of wallet approvals, you can read the Binance Academy explainer on token approvals and how to revoke them.

Red flags · Fake airdrops / approval traps

Unfamiliar tokens appearing in your wallet out of nowhere, luring you to some site to “claim” or “swap”; a “limited-time airdrop” or “connect your wallet to verify eligibility” promotion on social media; an unfamiliar site asking you to connect your wallet and sign an approval; a signing prompt you cannot understand, or one requesting an “unlimited allowance”. When you hit these, do not connect, do not sign, do not click. If you genuinely want to check whether a real airdrop exists, verify it through the project’s official channels, not a link someone slipped you.

A safety checklist to run before you act

After all those types, let me boil it down to a checklist you can pull out any time. Whatever situation you are in, before you transfer money, click a link, sign an approval, or read out a code, run through the points below in your head. Hit even one of them and you should stop.

This checklist will not block every scam in the world, but it blocks the big batch that beginners hit most. Make it muscle memory: when a money-related decision comes up, run through it first, then act.

Tip · Reduce your exposure at the source

The entry point to many scams is, in fact, that you left an account somewhere shady, installed an app from an unknown source, or clicked an ad link. Keep your trading gathered inside legitimate channels: sign up through the official entry point, use the official app, set up a dedicated email for your crypto account, and turn on two-factor verification. With the source kept clean, there are fewer gaps for a scammer to find you through. For the details on locking down your account settings, we write it out carefully in the sign-up guide.

If you do get caught, what to do first

No one wants to reach this point, but if it does happen, panic and delay only make the loss bigger. Below, in the order of “stop the bleeding, then recover, then preserve evidence”, is what to do first. Situations vary, so what follows is a general direction; for the specifics, defer to the official guidance where you live.

Step one: cut it off immediately, stop operating

The moment you realise something is wrong, halt every action the other side has been guiding: do not make the transfer they told you to, do not click any more links they send, do not sign anything else. If you are inside a suspicious site or app, exit and disconnect your wallet at once. A lot of the loss grows during the “still half-believing and going along after being caught” phase, so put that tourniquet on first.

Step two: rescue control of your account

Step three: preserve the evidence in full

Before you delete chats or leave groups, keep all the evidence: chat logs, the other side’s account details, the receiving address, transfer records, the links and screenshots of the sites involved, the on-chain transaction hash, and so on. These are the key materials for filing a report and seeking help later. On-chain transfers are hard to recover, but the transaction records are public and verifiable, and a complete evidence trail helps investigators and the platform’s risk team understand what happened. Export, screenshot, and file these away; do not wipe them out of shame and anger.

Step four: report it and seek official help

With your evidence in hand, report it to the police or anti-fraud agency where you live. Where an exchange account is involved, also contact the platform through the official ticket channel, explain the situation, and ask for help (for example, flagging the suspicious address for risk control). One thing to flag in particular: this stage is a hotbed for the “second scam”. People will pose as a “recovery firm”, a “master hacker”, or “an insider at the cyber police”, claiming they can get your money back if you just pay a fee first. That is yet another scam, aimed precisely at people who have just been burned and are desperate to recover. Do not believe anyone who says “pay first and I will recover your loss”.

Safety warning · Beware the “recovery” second scam

After a scam, people or outfits claiming they can “recover your loss” often appear, asking you to pay a “service fee”, “deposit”, or “facilitation fee” up front. These are almost always a second harvest of the victim. Genuine reporting and help go through official channels and never require you to send money to some private party first. The louder the promise to “guarantee recovery”, the more on guard you should be.

Step five: review it, do not blame yourself

One last honest thing: being scammed is nothing to be ashamed of. The people who design these scams are professional crews who have read human weakness inside out. More useful than blaming yourself is a calm review: which step, which emotion made you drop your guard? Write down the red flags from this time, and they will make it harder for you and the people around you to fall for the same playbook next time. Passing the lesson on is itself a way of stopping the bleeding.

In the end, staying safe is not about memorising a “list of scammers”; it is about building a way of judging that a sales pitch cannot lead around by the nose: stay alert to urgency, stay sceptical of high returns, refuse anyone who asks for your keys, and never sign an approval you do not understand. Make these instincts and you will dodge the vast majority of the traps in your beginner phase. When you are ready to start properly, remember to sign up through legitimate channels and use the official app, and get that first step steady.

Want to start the right way? Use legitimate channels
BN666X

Sign up through the official entry point and use the official app; with our invite code BN666X you get up to 20% off trading fees*

Sign up through the official entry point →

* Actual rate shown on Binance’s promo page, subject to change. CoinFledge is an independent guide, not affiliated with Binance. Always double-check that the page you land on is the official domain.

A few common questions

A stranger messaged me about a “sure-win investment”. Is it definitely a scam?

When someone reaches out to you first, ties feelings or favours together with “sure-win investing”, lets you into a platform only through a link they give you, and asks for a payment before you can withdraw, you can be almost certain it is a pig-butchering-type scam. The safest move is to not engage and not put in money; if you genuinely want to invest, go through open, legitimate channels yourself.

Will exchange support DM me out of the blue?

Real support almost only replies through the official ticket you submitted; it will not DM you out of the blue, and it certainly will not ask for your password, verification code, or seed phrase. Treat any “support agent” who comes to you uninvited, creates urgency, and asks for this information as a scammer.

I have already sent money to a scammer. Can I get it back?

On-chain transfers usually cannot be reversed and recovery is very hard, but that does not mean it is hopeless. Right away, keep all your evidence, report it to the police or an anti-fraud agency, and contact the platform for help through the official ticket. At the same time, be sure to beware the “pay a fee and I will recover it for you” second scam; that is another trap.

How do I tell whether a site is the real official one?

Do not go in through a forwarded link or a search ad; type the official address yourself or use a bookmark. Once the page loads, check the domain spelling in the address bar letter by letter and watch for extra letters, numbers standing in for letters, or strange suffixes. Only download an app through the official app store or the official link on the official site.

Checked and updated June 2026. Scam wording and formats keep changing, so this guide is about a reusable way of spotting them rather than a specific list. For the exact procedures around reporting and pursuing your rights, defer to the official guidance from the police and anti-fraud agencies where you live. CoinFledge is an independent third-party guide; everything here is for learning and reference only and is not financial advice.