Phishing is a constant threat and comes in many forms. Luckily there are steps you can take to defend yourself from phishing scams.

What is “Phishing”

Phishing is the fraudulent attempt to obtain sensitive information, such as usernames, passwords, and other confidential information by getting you to send your personal data to the scam artist. Methods employed often include sending a malicious link disguised as a trusted source. Phishing attempts could appear in all communication channels, including social media (Twitter, Facebook), Messaging (Telegram, WhatsApp), SMS, voice call, email, or even in-person.

Specific examples:

  • Asking you to click on a link which looks like it comes from Crypto.com
  • Asking you to deposit a small amount of funds to an address for identification, yet once you have made the transfer, there will be no way to revert it
  • Asking for your login credentials
  • Assisting you with your withdrawals/deposits
  • Offering you free giveaways, airdrop or links to a suspicious trading platform
  • Sending random, unprompted messages to you via email or SMS
  • Asking you to verify your account immediately or else you’ll risk suspension of your account

Tips to avoid phishing scams

  1. Turn on your Two Factor Authentication (aka 2FA) within the Crypto.com App for additional security. Read how on our FAQ
  2. Only trust official Crypto.com accounts that are verified with a “blue tick” (see the list of verified Crypto.com website, mobile apps and social media accounts below). If you’re unsure, you can double-check by visiting www.crypto.com and clicking on our social media links in our footer.

    Examples:

3.   No one from Crypto.com will ever ask for your login credentials, private keys, 2FA security codes or recovery phrases, no matter which mode of communication you use to communicate with us.

4.   No one from Crypto.com will ever ask you to send funds to external addresses under the guise of “address verification” or special events to reward you with more cryptocurrency.

5.   If someone contacts you via email, remember to check the sender’s email address, and you should dig deeper if it looks suspicious by clicking into the email header to check the actual address of the original sender.

6.   Be skeptical of giveaways on social media - always check if the promotion is hosted in our official channels before participating.

When in doubt, talk to us

If you suspect that someone is impersonating Crypto.com to steal your funds, we strongly recommend you DO NOT click or respond to their requests, nor provide any personal information to them. Instead, confirm the sender’s identity by contacting us through the following official channels:

Official Website

Official Mobile Apps

Official Social Media Channels