Get Newton
The Canadian crypto trading platform you can trust.
Sign Up Now
The Canadian Anti-Fraud Centre (CAFC) reported that in 2023, Canadians lost nearly $309.4 million to investment scams, with cryptocurrency-related frauds accounting for 50% of these losses.
From “romance” scams that begin on social platforms, to whale-sounding “trading experts” who promise quick returns, to random airdrop tokens that magically land in a user’s wallet and drain it upon interaction, the range of scams seems endless.
But beneath it all, scammers usually capitalize on a few human tendencies: greed, desperation, loneliness, and a lack of security knowledge regarding crypto transactions.
Now, some folks roll their eyes and think, “Scams won’t happen to me.” However, the reality is that even crypto influencers, dev teams, and crypto veterans occasionally slip up.
This article is drawn from anecdotes, tips, and cautionary tales shared by countless users. We will reveal how to spot cryptocurrency scams, the sneaky emotional and psychological triggers crypto scammers exploit, the typical scripts they deploy, and the steps that can be taken to avoid falling victim. All in all, The overarching message is this:
“Assume everything is a scam until proven legitimate. And even then, keep your guard up.”
While the below can vary in their specific mechanics, they share one core ingredient: social engineering. This tactic plays on trust, urgency, greed, fear, or a combination of these. Scammers expertly manipulate these key emotional triggers:
According to cybersecurity firm Avast, 90% of cyberattacks incorporate social engineering. It's telling us something important about where our real vulnerabilities lie.
What's interesting about crypto scam red flags is that they're almost comically obvious - once you're not the one being scammed.
Here's what to watch for:
Let's examine the most prevalent cryptocurrency investment scams in detail.
Yes, even a beloved crypto influencer with a million subscribers can be part of a giant con. The Crypto YouTuber Scam thrives on trust. Influencers build an audience by offering “insights,” “picks,” and “hot tips.” Over time, loyal viewers might think, “This person must know what they’re talking about,” especially if that influencer has had a couple of winning picks in the past.
But behind the scenes, some of these personalities are taking undisclosed payments or pre-sale tokens to shill a new project. The flow goes something like this:
Suddenly, the recommended tokens are revealed to lack genuine backing. As the backlash begins, the influencer’s video or social media post is quietly taken down. The influencer moves on unscathed while their viewers are left with worthless coins and depleted wallets. The tragic part? Many victims still defend their favourite influencers even after being scammed, a testament to the powerful psychological bonds these content creators forge with their audiences.
The crypto space is littered with influencer manipulation cases. One prominent example involves a YouTuber with over 580,000 subscribers who promoted a project called Polkamon. while secretly holding pre-sale tokens. He compared it to popular NFT projects and claimed that getting in at ground level was a sure bet.
On March 31st, when the sale occurred, a deposit of 10,000 tokens landed in his digital wallet via a private distribution contract. Within hours, he swapped all those tokens—worth over $300,000—for stablecoins, effectively dumping them on his own followers who had just gotten in.
This pattern of behavior aligns with pump-and-dump schemes, where an influencer promotes a cryptocurrency to inflate its value and then sells off large holdings for profit, leaving other investors with devalued assets.
It doesn’t stop there. A well-known blockchain investigator, ZachXBT, compiled a massive list exposing YouTubers who charge big bucks for paid promotions, often with no disclaimers.
Never take investment advice blindly from random influencers, no matter how big their audience is. Instead:
Crypto scammers frequently pose as trusted entities—wallet providers, exchanges, or even official “verified” social media accounts to extract sensitive information from unsuspecting users. More recently, fraudsters have added AI-driven tactics such as voice cloning, deepfake videos, and chatbots to enhance their credibility and pressure victims into making hasty, risky decisions.
Fake Admins & ‘Helpful’ Strangers
Brand Hijacking
AI-Enhanced Impersonation
Initiated Contact via Customer Support Searches
Plenty of people have reported wanting help from a popular crypto exchange or a popular wallet provider, only to end up talking to a scammer who asked them to install “remote access” software or to “verify account ownership” by sharing private details. Once the scammer sees the user’s screen or obtains those codes, the user’s wallet is an open target.
In September 2024, during Apple's iPhone 16 launch event, cryptocurrency scammers broadcasted fake livestreams on YouTube featuring an AI-generated deepfake of Apple CEO Tim Cook.
In these streams, the counterfeit Cook encouraged viewers to send cryptocurrencies like Bitcoin and Ethereum to a specified address, falsely promising to double their contributions. This classic "double-your-money" scam exploited the high viewership of Apple's event, deceiving many into transferring funds to fraudulent digital wallets.
The streams were eventually identified and removed, but not before causing substantial financial harm to unsuspecting individuals.
The mechanics of crypto phishing are deceptively simple. The scammer sends you a link through email, text, or social media. That's it. No complex hacking, no sophisticated code. Just a link that looks important enough to click.
With just one click, the victim is directed to a fake website designed to mimic a legitimate platform. Once the user connects a digital wallet, the site requests suspicious transaction approvals, which can grant the scammer total access to the user’s assets.
Phishing can also be in the form of a simple email as the one above.
When recipients click the link provided, they land on a fake login page. If they enter credentials, the scammer can use that info on the real platform. Cryptocurrency scammers also frequently deploy advertisements on social media and search engines, promoting "new meme coins" or "unmissable ICOs" (Initial Coin Offerings). These ads can instantly redirect users to phishing sites when clicked.
One of the biggest cautionary tales of phishing + impersonation cryptocurrency scams comes from Ethereum co-founder Vitalik Buterin’s social media account hack. Attackers posted about a “free NFT drop,” and in only 20 minutes, they managed to siphon away over $691,000 worth of digital assets from people who connected their wallets and signed transactions.
Airdrops are among the most common ways for new users to get absolutely wrecked. The concept sounds innocent enough: free tokens given away by a project, either to build community or reward early adopters. However, scammers exploit that excitement by sending random tokens to any public wallet address they can find. This might be done en masse using tools that scrape blockchain data. These tokens show up in unsuspecting users’ wallets but often have no real value and are designed to lure users to phishing sites where they’re prompted to connect their wallets or approve malicious transactions.
The typical script goes like this:
In April 2024, Wormhole, a cross-chain bridging platform, conducted an airdrop of its native governance token, W, distributing approximately $850 million worth of tokens to eligible users. This event attracted significant attention from scammers and malicious actors who sought to exploit the excitement surrounding the airdrop. Scammers quickly deployed a classic impersonation strategy on social media.
They created accounts that looked nearly identical to Wormhole's official presence, even securing gold checkmarks to appear more legitimate. The situation became even more complicated when scammers managed to hack the account of Wormhole's founder, Robinson Burkey, using it to spread malicious links aimed at draining users' wallets.
Taking advantage of the buzz, some opportunistic developers launched spoof tokens(copycat tokens). One notable example was "Warmhole" - a parody token that emerged right after the airdrop announcement. This token saw an astonishing price surge, with its market value jumping from $100,000 to $8.3 million in less than six hours - an 83,000% increase. This rapid rise likely drew in many investors hoping to catch a "second wave" of profits, though such astronomical gains often signal potential pump-and-dump schemes.
Verify everything, even things that look official. Even verified accounts get hacked. Look at who follows them, read the comments, and most importantly, wait. Bad news travels fast in crypto - if something's a scam, you'll usually know within 24 hours. Take a day or two to verify.
There should also be discussion on social media platforms like Twitter, Discord, or Telegram. If the site is brand-new, proceed with extreme caution.
A “Rogue Smart Contract” scam typically unfolds when unsuspecting users interact with malicious or tampered dApps (decentralized applications). At first glance, the contract might appear legitimate—perhaps it’s a new DeFi protocol, an NFT mint, or some enticing “yield farm.” However, buried within the smart contract’s code is malicious logic designed to seize control of users’ tokens or NFTs the moment they approve a transaction.
In October 2024, a significant incident involving a rogue smart contract led to substantial financial losses within the cryptocurrency ecosystem. A malicious actor deployed a deceptive smart contract on the Arbitrum blockchain, targeting the SUN token associated with Sunray Finance. This contract exploited vulnerabilities to mint an excessive amount of SUN tokens illegitimately.
The attacker then swiftly exchanged these fraudulently created tokens for stablecoins and other cryptocurrencies, effectively draining liquidity from the platform. The total loss was estimated at approximately $2.8 million.
Fake cryptocurrency exchanges are fraudulent platforms designed to deceive investors by mimicking legitimate trading sites. Cryptocurrency scammers create these counterfeit exchanges to attract users with the promise of secure trading, high liquidity, and attractive incentives like bonus Bitcoin or low trading fees. These fake platforms often replicate the look and feel of well-known exchanges to gain trust and appear credible.
Typically, the scam follows this pattern:
Scammers will also sometimes try to submit fake mobile apps that are knockoff versions of legitimate apps to the Apple App Store or Google Play Store. Unwitting victims may download the app that will take them to a fake website or ask the user to input their seed phrase–thereby stealing all the crypto associated with that seed phrase.
Once considered Canada's largest cryptocurrency exchange, QuadrigaCX was revealed to be a Ponzi scheme following the death of its founder, Gerald Cotten. An investigation found that Cotten had been operating multiple cryptocurrency accounts under aliases, crediting them with fictitious currency and crypto asset balances and covering shortfalls with other clients' deposits.
BitKRX impersonated a branch of South Korea's legitimate trading platform, KRX, to defraud investors. By mimicking a reputable exchange, it lured users into depositing funds, which were subsequently misappropriated.
In a notable case, fraudsters created a counterfeit website resembling Coinbase Pro, a legitimate cryptocurrency exchange. Unsuspecting users who entered their credentials had their information stolen, resulting in the loss of approximately $20 million in cryptocurrency.
In an address poisoning scam, fraudsters try to “poison” your transaction history by sending spam tokens or fake transactions designed to look like they originated from or were sent to your real wallet. For example, you might see a suspicious transaction labeled “NFT sent” in your blockchain explorer, even though you never initiated it. The goal is psychological misdirection. By placing a familiar-looking address (the scammer’s address) into your transaction logs, the scammers hope you’ll later copy their address by mistake when sending funds in the future.
Here’s the typical flow:
Despite these ominous messages in your transaction feed, address poisoning does not inherently compromise your wallet or private keys. As long as you haven’t shared your 24-word recovery phrase or signed a malicious transaction, your crypto remains safe.
Scammers create fake NFT projects, often using stolen artwork or impersonating legitimate creators. They lure buyers with promises of exclusive drops, only to disappear with the funds.
Meme coins aren’t always scams; some have real communities, but plenty of criminals target them because hype-driven traders might be less cautious. Meme coins are especially prone to rug pulls and pump-and-dumps. They generate FOMO through tweets from newly hijacked or bot accounts, artificially inflate the price, and then pull the rug out. If a user invests heavily without verifying token contracts, liquidity locks, or reputable audits, the possibility of losing everything is high.
In January 2022, the Frosties NFT project emerged, offering a collection of ice cream-themed digital artworks. The creators promised various benefits to investors, including giveaways, early access to a metaverse game, and exclusive mint passes for future projects.
These incentives generated significant interest, leading to the sale of all 8,888 NFTs and raising approximately $1.2 million. However, shortly after the sale, the project's developers abruptly deactivated the project's website and social media accounts, effectively disappearing with the funds—a maneuver known as a "rug pull."
This left investors with worthless NFTs and no recourse. Luckily, in March 2022, U.S. law enforcement arrested and charged the alleged perpetrators, Ethan Nguyen and Andre Llacuna, with conspiracy to commit wire fraud and conspiracy to commit money laundering
In December 2024, internet personality Haliey Welch, known as the "Hawk Tuah Girl," launched a meme coin called $HAWK on the Solana blockchain. The token's value surged to a market capitalization of nearly $500 million shortly after its release.
However, within hours, the market cap plummeted by over 90%, leading to significant financial losses for investors. This rapid decline prompted allegations of a "pump-and-dump" scheme, where the token's value was artificially inflated before being sold off by insiders, leaving other investors with devalued assets.
Critics, including crypto journalist Coffeezilla, accused Welch and her team of insider trading and orchestrating a rug pull scam. Welch and her team denied these allegations, attributing the crash to external factors.
A pig butchering scam is a sophisticated psychological manipulation where scammers "fatten up" victims both emotionally and financially over weeks or months before leading them to financial slaughter. It usually unfolds like this:
In December 2024, a Toronto resident reported losing over $355,000 in a romance cryptocurrency fraud. The victim began communicating online with an individual named "Moshe Theodor McNigh" on Facebook in June 2021. Over time, the fraudster built a relationship with the victim and convinced them to invest in Bitcoin through a fraudulent platform. Following an extensive investigation involving the Toronto Police Service, the Ontario Provincial Police, the Royal Canadian Mounted Police, and Nigerian officials, a suspect was arrested in Nigeria. Authorities successfully recovered and returned $225,000 of the stolen funds to the victim.
The DeFi boom opened doors to countless protocols touting unrealistic yields—10%, 50%, or even 1,000% APY. Some are legitimate high-risk opportunities, but many are outright Ponzi schemes. They rely on new participant deposits to pay existing users, with no real underlying revenue. Eventually, the system collapses, or the project founders drain the liquidity. Here’s the usual playbook:
Forsage was a decentralized finance (DeFi) platform launched in January 2020, operating primarily on the Ethereum blockchain. It was marketed as a smart contract-based investment platform, promising substantial returns to investors through a matrix-based referral system (a structured network where participants earn by recruiting others into predefined slots). However, authorities later identified it as a pyramid and Ponzi scheme that defrauded investors worldwide.
Forsage utilized smart contracts to automate its operations, requiring participants to purchase slots in a matrix system. Investors earned commissions by recruiting new members, whose cryptocurrency investments funded payouts to earlier participants-a hallmark of pyramid schemes.
In August 2022, authorities charged 11 individuals, including the four founders of Forsage, for their roles in orchestrating and promoting the fraudulent scheme, which raised over $300 million from millions of investors worldwide.
Investigations revealed that over 80% of Forsage investors received fewer Ethereum (ETH) tokens than they had invested, with over 50% never receiving any payouts.
Scammers frequently target job seekers with deceptive cryptocurrency-related employment schemes. These positions often involve cryptocurrency trading, mining, investor recruitment, or helping convert cash to crypto. Here’s the typical flow:
A Toronto man reported losing a substantial amount of money after falling victim to a cryptocurrency job scam. He was lured by a fake job offer that required him to perform tasks involving cryptocurrency transactions, ultimately leading to financial ruin.
Crypto scammers may send emails claiming to possess compromising information, such as passwords , browsing histories, financial information, photos, and videos obtained through data breaches. They threaten to expose this information unless a cryptocurrency payment is made. These cryptocurrency scams exploit the victim's fear of personal data exposure.
In most cases, however, the scammers have no information and rely solely on intimidation to extort money. This is a form of extortion and criminal activity.
Repeatedly, users advise a default stance: “Assume everything is a scam until proven otherwise.” So, always double-check domain names, look up references, and read official announcements. Real projects and exchanges usually have footprints online-blog posts, recognized social accounts, and discussions among established communities.
Follow reputable investigators like ZachXBT, an independent blockchain sleuth who uncovers numerous cryptocurrency scams and exposes how verified accounts and influencers collaborate with shady projects.
Utilize government resources such as the Canadian Anti-Fraud Centre (CAFC) for updates on prevalent scams and fraud prevention tips, the Competition Bureau Canada for information on deceptive marketing practices and scam alerts, and the Canadian Investment Regulatory Organization (CIRO) for publications and warnings related to investment frauds, including those involving cryptocurrencies.
Engage with community-driven alerts by participating in crypto forums and subreddits like r/CryptoCurrency, r/CryptoScams, and r/Scams, where you can receive firsthand accounts and warnings from other users.
Join security-focused Telegram and Discord channels where members report suspicious activities and share scam alerts in real time.
Additionally, subscribe to security newsletters from blockchain security firms like Chainalysis and Elliptic for in-depth analyses and proactive warnings about emerging threats.
Simple
Keep most of one’s funds in cold storage and maintain only a small amount in a hot wallet for day-to-day activity or trading. If a user accidentally connects a hot wallet to a malicious website, at least the scammers won’t be able to drain the entire stash.
Use a burner wallet with minimal funds for risky interactions such as minting NFTs or interacting with new apps. If something goes wrong, only a small, isolated portion of funds is exposed.
For those managing larger funds, a multi-signature (multi-sig) wallet can add an extra layer of protection. Multi-sig requires multiple private keys to approve a transaction. A single compromised key is not enough. This approach is more advanced and might not be practical for everyday crypto users, but it’s a high-level strategy for those holding significant amounts or managing group funds.
Modern digital wallets may show what a smart contract transaction is about to do. Pause and read carefully. If it says “unlimited spending,” reconsider. Some wallets provide transaction simulations that reveal exactly which tokens the contract can access. Sites like Etherscan (Token Approvals) or similar tools for other chains can revoke past approvals. It’s wise to do a routine check to ensure no suspicious contracts have ongoing access.
Random invites to Discord or WhatsApp groups are often orchestrated scam hives. If the group is overly positive and urges immediate investment, that’s a neon red flag.
If it’s not clear who the team is, or if the whitepaper is shady, skip it. Resist chasing “free airdrops” unless there’s official confirmation.
Certain browser extensions can block known phishing sites or show warnings.
Enable 2FA on any centralized exchanges. But remember that scammers can still trick users into revealing 2FA codes if the user is not cautious.
Phishing can exploit outdated browsers or apps. Always stay updated.
Avoid public computers or networks for cryptocurrency transactions.
Crypto is far more unforgiving than traditional banking systems.
Unless the scammer makes a huge mistake or tries to launder massive amounts through regulated exchanges, clawing funds back is difficult. The decentralized nature of blockchains means there’s no institution to call for a chargeback.
Some criminals pose as “recovery experts,” contacting victims after they post about losing funds. They promise to retrieve stolen crypto for a fee. These are almost always more scams. The best move is to:
While most crypto scam losses are permanent, some avenues exist:
Though the chance of recovering funds is small, reporting can help track these criminals and might prevent future crimes.
In extreme cases like taking on crippling loans to invest, some users consider debt consolidation or even bankruptcy.
One piece of consistent advice across every example is to slow down. Most common cryptocurrency scams succeed by inciting a sense of urgency or excitement. Emotional impulses override rational thinking, so the remedy is to take time.
Another code to live by is Trust No One, Verify Everything. Even a close friend can accidentally forward a phishing link, and a well-known influencer can become compromised. Mistakes happen, and in crypto, each mistake can be permanent. If there’s ever a shred of doubt, it’s better to skip a potential “opportunity” than to risk losing tokens.
