Phishing is the #1 attack vector in crypto, responsible for over $1 billion in losses in 2024 alone. Unlike smart contract exploits that require technical sophistication, phishing attacks target human psychology — urgency, greed, and trust. This guide covers every major phishing type and gives you concrete steps to protect yourself.
Type 1: Fake Website Phishing
Attackers create pixel-perfect copies of legitimate DeFi sites (Uniswap, OpenSea, MetaMask) with slightly altered domain names. They drive traffic via Google Ads (which often appear above the real site), Twitter/X posts from hacked accounts, and Discord announcements. The fake site either steals your seed phrase directly or tricks you into approving a malicious transaction.
- ▶Always bookmark legitimate DeFi sites and only use those bookmarks.
- ▶Check the URL character by character — 'uniswap.org' vs 'uniswаp.org' (Cyrillic 'а').
- ▶Never click DeFi links from Twitter, Discord, or email — type the URL manually.
- ▶Install the MetaMask phishing detection extension which flags known phishing sites.
Type 2: Approval Phishing (Wallet Drainers)
Approval phishing is the most sophisticated and damaging form of crypto phishing. Instead of stealing your seed phrase, attackers trick you into signing a transaction that grants their contract unlimited permission to spend your tokens. The approval looks like a normal 'connect wallet' step but is actually a setApprovalForAll or approve() call with malicious parameters.
Type 3: Discord and Telegram Scams
Discord and Telegram are the primary social channels for crypto communities — and prime hunting grounds for scammers. Common attack patterns include: fake 'admin' DMs offering to 'help' with a wallet issue, fake NFT mint announcements in compromised project servers, 'free airdrop' links that lead to wallet drainers, and impersonation of well-known figures offering investment opportunities.
- ▶Legitimate project admins will NEVER DM you first.
- ▶Disable DMs from server members in your Discord privacy settings.
- ▶Never click 'exclusive mint' or 'free airdrop' links sent via DM.
- ▶Verify any announcement in the official project's verified channels before acting.
Type 4: Fake Token Airdrops
Attackers send worthless tokens directly to your wallet. When you try to sell them on a DEX, the transaction requires you to approve a malicious contract that drains your real assets. Never interact with tokens you didn't request — simply ignore them in your wallet.
Your Phishing Prevention Checklist
- 1Use a hardware wallet for all significant transactions.
- 2Bookmark all DeFi sites you use regularly.
- 3Never enter your seed phrase anywhere online.
- 4Read every transaction before signing — check the contract address, function name, and approval amount.
- 5Use Revoke.cash monthly to audit and revoke unnecessary token approvals.
- 6Disable Discord DMs from non-friends.