I wallet drainer hanno rubato oltre 500M USD nel 2024. Le truffe pig butchering hanno aggiunto 4 miliardi USD secondo FBI IC3. Questa pagina traccia kit drainer attivi, token rug-pulled e wallet truffa noti.
Email o post X/Discord annuncia 'airdrop gratuito' di nuovo token. Per claim chiede di connettere wallet a sito sconosciuto (DApp). Il sito non distribuisce nulla — invece chiede approvazione...
Ads su Facebook/Instagram/YouTube promettono rendimenti 20-200% mensili su forex/crypto/azioni con piattaforma sconosciuta. Trustpilot mostra recensioni 5 stelle (fasulle). Dopo il primo deposito...
Email/Discord DM/Twitter avvisa di un problema con il wallet (sync error, security alert) e chiede di inserire le 12/24 parole di recupero su sito fasullo. Anche un popup nel browser può fingere di...
Truffatore contatta su LinkedIn/Tinder/WhatsApp, costruisce relazione per settimane/mesi ('pig fattening'), poi propone investimento crypto su piattaforma controllata da loro. Le perdite iniziano...
Scammers build polished lookalike crypto-to-gift-card storefronts that mimic real platforms (dark theme, trust badges, "Pay with crypto" buttons) to steal your Bitcoin or Ethereum. Victims either...
Hackers compromised a third-party frontend vendor used by Polymarket and injected malicious JavaScript into the legitimate trading site. Visitors were prompted to sign fraudulent wallet transactions...
Approval phishing is a crypto scam where victims are tricked into signing a wallet transaction that grants attackers standing permission to spend or transfer tokens. Unlike classic phishing, victims...
A convincing clone of OpenAI's ChatGPT download page at openew[.]app is tricking Windows and Mac users into installing info-stealing malware. The site mirrors OpenAI's branding, dark theme, and...
Reverse trick: scammer posts on Reddit/Discord 'how do I withdraw $50k USDT from this wallet?' and shares a seed phrase. Victim imports seed; wallet shows $50k USDT (real). When victim adds ETH to...
Solana drainer asks user to sign a tx with Cross-Program Invocation (CPI) to a malicious program. Phantom simulation may not flag if program is unknown. Drainer transfers SOL + SPL tokens in one tx....
Telegram trading bots (Maestro, BananaGun, Bonkbot) are popular for memecoin sniping. Scammers clone these ('Maestro-Pro-Bot', 'BananaGun Sniper2') and demand seed or private key import. Indicators:...
Malware (ClipBanker, CryptoShuffler) monitors clipboard. When user copies a wallet address, malware silently replaces it with attacker's address sharing same length/format. CryptoShuffler stole...
Projects launch 'algorithmic stablecoin' with high yield via seigniorage (USDD, USDN, BEAN, BasisCash). When trust falters, peg breaks irreversibly (Terra/UST $40B collapse May 2022). Often paired...
Attacker bridges drained proceeds via Wormhole/Allbridge/deBridge to obscure trace. Some drainer kits exploit cross-chain accounts (Phantom multi-chain mode) — one signature drains both SOL and ETH...
Drainer offers 'free conversion' of legacy USDC.e (Avalanche/Optimism bridged) to native USDC. Or fake 'USDC v2 migration'. User signs permit on real USDC; attacker drains. Indicators: (1) real USDC...
Clone protocol forks Aave/Compound, adds backdoor in price oracle or admin function. User deposits, dev exploits to drain pool. Examples: Swaprum ($3M, 'CertiK audited'), CompounderFinance ($10M)....