The Good Tech Companies - Educational Byte: What is Phishing in Crypto and How to Protect from It
Episode Date: September 11, 2025This story was originally published on HackerNoon at: https://hackernoon.com/educational-byte-what-is-phishing-in-crypto-and-how-to-protect-from-it. Phishing in crypto i...sn’t just bad links. It’s also fake jobs, deepfakes, and Discord traps. Got a wallet? Here’s how not to get tricked. Check more stories related to web3 at: https://hackernoon.com/c/web3. You can also check exclusive content about #crypto-scams, #phishing, #protect-crypto-from-phishing, #phishing-attacks, #crypto-security, #impersonation, #obyte, #good-company, and more. This story was written by: @obyte. Learn more about this writer by checking @obyte's about page, and for more stories, please visit hackernoon.com. Phishing is a type of scam where someone tricks you into giving away private information. In crypto, this often involves fake websites, impersonated apps, or people pretending to be someone they’re not. Understanding how phishing works is one of the best ways to protect your funds.
Transcript
Discussion (0)
This audio is presented by Hacker Noon, where anyone can learn anything about any technology.
Educational Bight
What is phishing in crypto and how to protect from it?
Biobite. Fishing is a type of scam where someone tricks you into giving away private information,
like your password or wallet keys.
In crypto, this often involves fake websites, impersonated apps, or people pretending to be someone
they're not like support agents or project admins.
To get access to your wallet and steal your funds, it's also widespread.
In the first quarter of 2025 alone, the international non-profit anti-fishing working group,
APWG, recorded over 1 million fishing attacks worldwide.
That's the highest number since 2023.
And crypto users are prime targets, especially when they're distracted or unsure of what to trust.
If you use a wallet, trade tokens, or just explore crypto projects,
understanding how fishing works is one of the best ways to protect your funds,
because it's not just about technology, it's about manipulation,
and social engineering.
And scammers know exactly how to fake their way in.
What does fishing look like in crypto?
Fishing in crypto comes in many forms, but the goal is always the same.
Get you to hand over control of your wallet.
Some scams look like helpful tools.
Fakesites copy real platforms like Metamask or Uniswap.
Sometimes they show up at the top of search results as ads.
One wrong click and you're on a page that ASKSFOR your seed phrase or tricks you into signing
a malicious transaction. Other attacks use fake job offers, especially in crypto-related communities.
Scammers might invite you to download a test task, an unnecessary PDF of some kind, or an unfamiliar
software for video conferencing, which turns out to be malware. Or they'll ask you to connect your
wallet to a fake onboarding site. Deepfakes are also becoming more common. Criminal groups are using
AI-generated videos and phone calls to impersonate real people. In one reported case, scammers
used deep fake voices and videos of celebrities to promote their fake investment platform and
trick thousands into sending fiat or crypto. Through a fake call center operation from Georgia,
they defrauded over 6,000 people from several countries, who lost around $35 million in total.
And then there's Discord. If you post a support question in a public channel,
expect to get a private message from someone pretending to be staff. They'll be friendly and
helpful, but they'll eventually send you a link designed to empty your wallet. How
to avoid getting fished. The best way to protect yourself from fishing is to slow down and
stay suspicious of anything that seems helpful or urgent. Start by never sharing your seed phrase,
not even with support, staff. No real company or project will ever ask for it. More useful
advice includes, bookmark the sites you use often, and don't click on random ads when looking
up wallet or exchange names. Typing the URL directly is safer. Take a good look at that URL, too. If it
It seems weird or different from the original name of the platform or the registered one
entrusted sites like coin market cap or even Wikipedia, it's definitely fishing, or at least
not the original website.
In Obite, for instance, the official website is obite.org, but there's also a stats page
with the domainobite.io.
Different domains may be scams.
Use a cold wallet for most of your funds.
It adds a layer of protection if you end up on a fake site because now your savings are off
the internet. In Obite, you can create a cold wallet by using a simple text coin. When it comes to
deepfakes or job offers, trust your instincts. If someone seems too eager to give you a job, a too
good to be true investment, or asks you to install unknown software, pause. Double check the
company, the recruiter, and the software. Call the company through a verified number before
clicking any links. On Discord, never trust direct messages about support. Legit teams only help
through official channels. If someone reaches out first, assume it's a scam. You can also turn off
DMs from server members in your settings. Fishing scams succeed by catching people off guard.
If you take your time, double check sources, and never give up private info, you'll avoid
most traps. Featured Vector Image by FreePick Thank You for listening to this Hackernoon story,
read by artificial intelligence. Visit Hackernoon.com to read, write, learn, and publish.