LEGALAUDIT

Scam Watch

How can you recognize Trust Wallet seed phrase phishing — fake validation page?

TLDR

User receives email/SMS 'your Trust Wallet must be revalidated' linking to trust wallet verify[.]com or trustwalletapp[.]io. Page mimics Trust Wallet UI, asks to 'restore wallet' by entering seed. Funds drained in minutes. Indicators: (1)...

How it works

User receives email/SMS 'your Trust Wallet must be revalidated' linking to trust wallet verify[.]com or trustwalletapp[.]io. Page mimics Trust Wallet UI, asks to 'restore wallet' by entering seed. Funds drained in minutes. Indicators: (1)...

Red flags

  • Urgent pressure to click, pay, or share codes immediately.
  • A link or sender that does not match the official organization.
  • Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.

What to do

  1. 1User receives email/SMS 'your Trust Wallet must be revalidated' linking to trust wallet verify[.]com or trustwalletapp[.]io.
  2. 2Indicators: (1) Trust Wallet NEVER asks for seed via email/SMS/web; (2) URL not trustwallet.com; (3) page asks for full seed in single form (real recovery is in app only); (4) urgency ('account locked in 24h'); (5) form posts seed to Vercel/Heroku backend.
  3. 3WHAT TO DO: seed NEVER leaves device; bookmark trustwallet.com; ignore all 'validation' emails.

Source

Trust-Wallet-Security

Source reviewed by Mythos Forensic Team

https://trustwallet.com/security

FAQ

Is Trust Wallet seed phrase phishing — fake validation page a real scam pattern?

Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.

What are the first warning signs?

Urgent pressure to click, pay, or share codes immediately.; A link or sender that does not match the official organization.; Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.

What should I do first?

User receives email/SMS 'your Trust Wallet must be revalidated' linking to trust wallet verify[.]com or trustwalletapp[.]io.; Indicators: (1) Trust Wallet NEVER asks for seed via email/SMS/web; (2) URL not trustwallet.com; (3) page asks for full seed in single form (real recovery is in app only); (4) urgency ('account locked in 24h'); (5) form posts seed to Vercel/Heroku backend.; WHAT TO DO: seed NEVER leaves device; bookmark trustwallet.com; ignore all 'validation' emails.

Can LegalAudit check my case?

Yes. Start a free chat and paste the message, link, sender, or payment details for triage.