Phishing scams, assaults disguised as legit communication or web sites designed to steal funds and delicate data, value crypto customers over $12 million in August, up 72% from July, Web3 anti-scam service Rip-off Sniffer reported on Saturday.
Crypto phishing scams impacted 15,230 victims in August, a 67% improve from July, with the only largest loss costing one person over $3 million, in accordance to Rip-off Sniffer.
The Rip-off Sniffer staff additionally famous a “sharp escalation” in EIP-7702 signature scams. EIP-7702 is an Ethereum enchancment proposal that permits Externally Owned Accounts to behave as sensible contract wallets that may execute transactions and shift funds.
Scammers and hackers exploiting this performance drained over $5.6 million in August via three separate assaults, Rip-off Sniffer mentioned.
Scams and cybersecurity exploits proceed to be an issue in crypto, with over $163 million stolen in August via malicious exercise. The persistent risk is a reminder for crypto customers to stay vigilant and apply good anti-phishing and anti-scam safety measures.
Associated: Venus Protocol recovers person’s $13.5M stolen in phishing assault
Good practices for staying secure in opposition to phishing scams
Losses from crypto hacks and scams crossed $3.1 billion within the first half of 2025 amid more and more refined assault strategies.
Scammers usually goal customers by posing as legit and well-known cryptocurrency exchanges, both organising faux web sites with comparable URL addresses to legit exchanges or sending faux communications to customers.
These communications embody emails, textual content messages, and even bodily letters despatched via the mail, designed to steal delicate person data, together with seed phrases for crypto wallets and passwords to on-line accounts.
Sometimes, the scammers will faux to be customer support brokers from respected exchanges, claiming that the person’s account is dealing with some form of risk or cybersecurity concern and demand private data from the person, together with seed phrases.
Good practices to keep away from phishing scams embody checking URLs for tiny errors and bookmarking pages as an alternative of utilizing serps or the search bar to entry web sites each time, verifying web site hyperlinks, and avoiding downloading attachments or clicking hyperlinks from unknown sources.
Phishing scams usually include misspelled phrases or grammatical errors, and any of those errors is a purple flag; customers ought to learn via messages fastidiously to detect such errors.
Crypto and Web3 customers must also use digital non-public networks (VPNs) to masks their IP addresses and bodily areas, by no means give out seed phrases or passwords, and allow two-factor authentication for delicate on-line accounts.
Journal: $55M DeFi Saver phish, copy2pwn hijacks your clipboard: Crypto Sec
