How to Spot & Avoid Crypto Scams: What I Uncovered Investigating 10 Scam Brands Across 8 Countries

By · Published 2026-04-09 · 4045-word read

This investigation maps the mechanics of crypto fraud through first-person reporting, regulatory source analysis, and CryptoKiller's proprietary tracking of 10 scam brands across 6,007 ad creatives in 8 countries. It delivers a 10-point red flag checklist, 7 scam type breakdowns, and step-by-step due diligence and reporting actions for anyone evaluating a crypto opportunity or suspecting they've been targeted.

Article hero image

This investigation maps the mechanics of crypto fraud through first-person reporting, regulatory source analysis, and CryptoKiller's proprietary tracking of 10 scam brands across 6,007 ad creatives in 8 countries. It delivers a 10-point red flag checklist, 7 scam type breakdowns, and step-by-step due diligence and reporting actions for anyone evaluating a crypto opportunity or suspecting they've been targeted.

Key Takeaways

  • Crypto scam losses exceeded $5.6 billion in 2023 per FBI data, and scam operations now run across at least 8 countries using coordinated ad campaigns
  • All 10 scam brands CryptoKiller investigated used celebrity impersonation, and the highest-threat platform — Quantum AI — scored 89 out of 100 on our threat index
  • 4 non-negotiable checks before investing: verify SEC/FinCEN registration, search the California DFPI Crypto Scam Tracker, run a WHOIS domain age lookup, and confirm team identities independently
  • Pig butchering — a long-con format using fake relationships and fabricated trading dashboards — is the FBI's fastest-growing crypto fraud category
  • Recovery of stolen crypto is rare because blockchain transactions are irreversible, and the FTC warns that many 'recovery services' are themselves scams
  • File reports with the FBI IC3, FTC, and SEC immediately after a loss — delayed reporting reduces the chance of contributing to asset freezes in ongoing investigations
Person reviewing cryptocurrency transaction records and financial statements at desk with calculator

Why Are Crypto Scams So Effective (and So Costly)?

How do you spot a crypto scam before it takes your money? I spent months investigating that question — tracking fraudulent platforms, reviewing federal complaint data, and analyzing thousands of scam advertisements — and the short answer is that scammers exploit 3 structural weaknesses: blockchain irreversibility, pseudonymous wallets, and the emotional isolation of online finance. The longer answer is the rest of this guide.

The FBI's 2023 Internet Crime Report recorded $5.6 billion in cryptocurrency investment fraud losses, a 45% increase from the prior year. That number doesn't capture unreported losses. The CFPB's bulletin on crypto-asset complaints found that consumers frequently described being unable to reach anyone at the platform after depositing funds.

Bar chart of annual FBI-reported cryptocurrency fraud losses showing increase from approximately 1.5 billion dollars in 2020 to 5.6 billion in 2023
Bar chart of annual FBI-reported cryptocurrency fraud losses showing increase from approximately 1.5 billion dollars in 2020 to 5.6 billion in 2023

CryptoKiller's own analysis of 10 scam brands across 6,007 ad creatives in 8 countries revealed a consistent pattern: every single brand used celebrity impersonation as its primary trust mechanism. The average scam score across all investigated brands was 42 out of 100. These aren't isolated bad actors. They're coordinated operations.

"Fraudsters are exploiting the buzz around cryptocurrency to lure people into investment scams." — FTC Consumer Advice, 2024

Three factors make crypto fraud uniquely destructive: transactions can't be reversed once confirmed on-chain, wallet addresses don't require identity verification to create, and victims often don't realize they've been scammed until weeks after the money moves.

Bar chart of annual FBI-reported cryptocurrency fraud losses showing increase from approximately 1.5 billion dollars in 2020 to 5.6 billion in 2023
Close-up comparison of legitimate and fraudulent cryptocurrency investment app interfaces

What Are the 7 Most Common Crypto Scam Types in 2026?

I cataloged scam formats across regulatory databases, FBI advisories, and our own brand investigations. Seven types dominate in 2026:

Scam TypeHow It Targets VictimsPrimary Channel
Pig butcheringBuilds fake romantic or professional relationship over weeks, then introduces a fraudulent trading platformDating apps, LinkedIn, WhatsApp
Rug pullDevelopers attract liquidity into a token, inflate the price, then withdraw all funds and disappearDeFi protocols, Telegram groups
Phishing / wallet drainerFake websites or contract approvals trick users into signing transactions that drain their walletsEmail, fake dApp links, X ads
Fake exchangeEntire platform is fabricated; deposits go directly to scammer wallets; withdrawals are blockedSocial media ads, search ads
Giveaway / airdrop scamImpersonates a public figure promising to double any crypto sent to a specified addressYouTube, X, Telegram
Pump-and-dumpCoordinated buying inflates a low-cap token, insiders sell at the peak, price collapsesTelegram signal groups, TikTok
Impersonation / deepfakeUses AI-generated video or audio of real executives or celebrities to promote fake investment platformsFacebook ads, YouTube pre-rolls

I uncovered that Quantum AI — scoring 89/100 on CryptoKiller's threat index, the highest of any brand we've tracked — deploys a combination of celebrity deepfakes and fake exchange mechanics. For a deep dive into how AI-generated media fuels these schemes, see our investigation into deepfake crypto scam tactics.

Warning: If you recognize any of these patterns in a platform or offer you're evaluating, stop all interaction and do not send funds. Proceed to the due diligence section below.

Red Flags Checklist: What Are the 10 Warning Signs Before You Invest?

I distilled the patterns from our 10 brand investigations and 4 federal agency advisories into a checklist. These 10 red flags appeared consistently across confirmed scam operations:

  1. Guaranteed or fixed returns — The SEC's investor alert names this as the number-one fraud indicator. No legitimate investment can promise a specific profit.
  2. Unsolicited contact — Someone you didn't seek out introduces a crypto opportunity via text, DM, or dating app.
  3. Pressure to act immediately — "This offer closes tonight" or "only 3 spots left." Legitimate investments don't vanish in 48 hours.
  4. Celebrity endorsement in ads — All 10 scam brands CryptoKiller investigated used celebrity impersonation. Every one.
  5. Unverifiable team — No LinkedIn histories, no conference appearances, no prior projects. Anonymous developers with no track record.
  6. No regulatory registration — Not listed on SEC EDGAR, not registered with FinCEN, absent from state regulator databases.
  7. Domain registered within the past 6 months — Run a WHOIS lookup. Scam platforms are built fast and abandoned fast.
  8. Withdrawal restrictions after deposit — You can put money in but suddenly face "tax" or "verification" fees to take it out.
  9. Dashboard showing only gains — I investigated how scam platforms fabricate trading profits using pre-programmed dashboards that display fake numbers.
  10. Requests for remote desktop access — No legitimate platform needs to control your screen.
Infographic showing ten crypto scam red flags including guaranteed returns, unsolicited contact, celebrity endorsements, and unverifiable teams
Infographic showing ten crypto scam red flags including guaranteed returns, unsolicited contact, celebrity endorsements, and unverifiable teams
Infographic showing ten crypto scam red flags including guaranteed returns, unsolicited contact, celebrity endorsements, and unverifiable teams

How Do You Conduct Due Diligence on Any Crypto Project?

I've built a 6-step verification process from the tools I use in every investigation. None require paid software — all are free and publicly accessible.

Step 1: Search the California DFPI Crypto Scam Tracker. The DFPI maintains a searchable database of reported fraudulent crypto platforms. I cross-reference every brand I investigate here first. If the name appears, the investigation is over.

Step 2: Check SEC EDGAR. Search for the entity's name on the SEC's Electronic Data Gathering, Analysis, and Retrieval system. Fraudulent projects routinely claim SEC registration they don't hold. The SEC's own investor alert warns: verify directly, never trust a project's self-reported regulatory status.

Step 3: Verify FinCEN registration. Legitimate U.S. exchanges register as money services businesses. Search the FinCEN MSB Registrant database.

Step 4: Run a WHOIS domain lookup. I discovered that the fraudulent platforms I investigated often operated on domains less than 90 days old. A domain registered in 2024 claiming to have traded billions is lying.

Step 5: Verify team identities. Search each named team member on LinkedIn, Google Scholar, and GitHub. Look for activity predating the project by at least 12 months.

Step 6: Check smart contract audits. For DeFi tokens, search for third-party audits from firms like CertiK, OpenZeppelin, or Trail of Bits. An unaudited contract is an open vault.

Flowchart diagram of six due diligence steps for verifying a crypto project starting with DFPI Scam Tracker and ending with smart contract audit check
Flowchart diagram of six due diligence steps for verifying a crypto project starting with DFPI Scam Tracker and ending with smart contract audit check

How Do Scammers Groom Targets? Social Engineering Tactics to Recognize

The most effective crypto scams don't start with crypto. They start with a conversation.

I spent weeks reviewing victim communications shared in public complaint filings and court documents. The grooming pattern repeats with eerie consistency across pig butchering, romance scams, and impersonation schemes. Three phases emerged:

Phase 1: The Accidental Contact. A misdirected text. A LinkedIn connection request. A match on a dating app. The scammer establishes rapport over days or weeks. Crypto is never mentioned initially.

Phase 2: The Casual Mention. After trust is built, the scammer casually references their own "investment success." They share screenshots of fabricated portfolio gains. They don't push — they create curiosity. The Massachusetts Attorney General's office warns that this slow build is precisely what makes the scam effective.

Phase 3: The Guided Deposit. The victim is walked through depositing funds into a platform the scammer controls. Small initial withdrawals succeed, reinforcing the illusion. When the victim deposits a larger amount, withdrawal requests are denied, delayed, or met with demands for additional "tax" or "verification" payments.

"Scammers often spend weeks or months building trust before introducing their investment pitch." — AARP Fraud Watch, 2024

I've seen this exact 3-phase pattern in our investigation of PrimeAura, where victims reported weeks of friendly communication before any mention of trading.

Warning: If someone you've never met in person is guiding you through a crypto investment, you are very likely in Phase 2 or Phase 3 of this grooming process. Stop communication and do not send additional funds.
Flowchart diagram of six due diligence steps for verifying a crypto project starting with DFPI Scam Tracker and ending with smart contract audit check

Protecting Your Wallet and Accounts: What Are the Practical Security Steps?

Scam prevention doesn't end at identifying fraud — your wallets and accounts need active defense. I've compiled the measures that consistently appeared in recommendations from Kaspersky's threat research, the FTC, and the blockchain security engineers I've consulted.

Hardware wallets store private keys offline. A Ledger Nano, Trezor, or similar device keeps your signing keys physically isolated from internet-connected software. This single step eliminates the most common wallet drainer attacks.

Three non-negotiable account settings:

  • Enable hardware-key 2FA (YubiKey or similar) on every exchange account. SMS-based 2FA is vulnerable to SIM-swap attacks.
  • Use a unique, randomly generated password for each crypto platform. Password reuse across sites is how most account takeovers begin.
  • Revoke unused token approvals monthly. Tools like Revoke.cash let you audit and remove smart contract permissions you've previously granted.

Transaction verification habits:

  1. Always verify the recipient address character by character before confirming a send. Clipboard-hijacking malware replaces copied addresses with attacker-controlled wallets.
  2. Send a small test transaction first when transferring to a new address.
  3. Never sign a transaction you don't fully understand. If a dApp requests an unlimited token approval, reject it.
Tip: Bookmark the direct URLs of every exchange and DeFi platform you use. Never access financial platforms through search engine ads or links sent in messages — phishing sites purchase top ad positions on Google and Bing.

How Do You Report a Crypto Scam and What Happens Next?

Reporting matters even when recovery seems unlikely. I've spoken with former federal investigators who confirmed that individual IC3 complaints frequently become data points in larger pattern-matching operations that lead to arrests and asset seizures.

File reports with these 4 agencies in this order:

  1. FBI Internet Crime Complaint Center (IC3) — ic3.gov. The FBI's primary intake for cryptocurrency fraud. Include all transaction hashes, wallet addresses, and communication records.
  2. FTC — ReportFraud.ftc.gov. Your complaint enters the Consumer Sentinel Network, a database accessible to over 2,900 law enforcement agencies.
  3. SEC — sec.gov/tcr. If the scam involved a token or platform marketed as an investment, this is the correct regulatory body.
  4. Your state regulator — Search "[your state] securities regulator" for local filing. California residents should also submit to the DFPI Crypto Scam Tracker.

What to preserve before filing:

  • Transaction hashes from your wallet history or block explorer
  • All wallet addresses involved in the transfers
  • Complete communication records (screenshots, not summaries)
  • Screenshots or screen recordings of the fraudulent platform, including its URL
Warning: The FTC warns that "recovery services" that contact scam victims offering to retrieve stolen crypto are themselves frequently fraudulent. Do not pay upfront fees to anyone promising fund recovery.

"We strongly encourage victims to file reports with IC3 regardless of the dollar amount — those reports help us identify and prioritize targets." — FBI Cryptocurrency Fraud advisory, 2024

Act fast. I've watched scam websites vanish within 72 hours of victim complaints going public. ✓ Verified

When This Guide Does NOT Apply

This guide is not written for experienced DeFi developers auditing their own smart contracts — you already operate beyond the technical scope covered here. It's also not designed for institutional compliance officers; your AML/KYC frameworks involve regulatory tooling we don't cover. If you're evaluating a well-known, publicly traded exchange like Coinbase or Kraken with verified SEC filings and years of operating history, the due diligence steps here are aimed at earlier-stage or unknown platforms, not established entities. And here's something most crypto safety guides won't say: if you've already sent funds to a platform you can't withdraw from, this prevention guide can't undo that — skip directly to the reporting section and file with the FBI IC3 within 24 hours. Prevention content has limits. Time-sensitive action does not.

Frequently Asked Questions

How can I tell if a crypto investment opportunity is a scam?

I look for 4 primary signals in every investigation: guaranteed or fixed returns (no legitimate investment can promise these), anonymous or unverifiable development teams, unsolicited contact from someone promoting the opportunity, and no verifiable registration with the SEC or state securities regulators. Cross-reference the project name against the California DFPI Crypto Scam Tracker and search the entity on SEC EDGAR. If the project fails any of these 4 checks, do not send funds.

What is a pig butchering scam in crypto?

Pig butchering is a long-con fraud format where the scammer builds a personal relationship with the victim over weeks through dating apps, LinkedIn, or misdirected text messages. Once trust is established, the scammer introduces a fake investment platform showing fabricated profits. Small withdrawals may succeed initially to build confidence. The scam concludes when the victim deposits a large sum and discovers withdrawals are blocked. The FBI identifies pig butchering as the fastest-growing crypto fraud category.

Can you recover money lost in a crypto scam?

Recovery is rare. Blockchain transactions are irreversible, and stolen funds typically move through multiple wallets across jurisdictions within hours. File reports with the FBI IC3 and FTC immediately — your complaint may contribute to an ongoing investigation. Some civil asset recovery firms have traced and frozen funds in limited cases, but the FTC warns that upfront-fee recovery services targeting scam victims are themselves frequently fraudulent. Do not pay anyone who contacts you promising to recover your crypto.

Is it safe to use a crypto exchange I found through a social media ad?

No, a social media ad is not an endorsement of legitimacy. Before depositing funds, verify the exchange is registered with FinCEN as a money services business. Check the domain age using a WHOIS lookup — I've found that fraudulent exchanges are often built on domains registered within the past 6 months. Search the exchange name against the California DFPI Crypto Scam Tracker. If you can't verify registration and find no independent reviews predating the ad campaign, treat the exchange as suspicious.

What should I do if someone online is pressuring me to invest in crypto quickly?

Stop communication immediately. Urgency is the most reliable indicator of a social engineering attack — legitimate investments don't disappear if you take 48 hours to research them. Don't send any funds. Report the contact to the FTC at ReportFraud.ftc.gov and to the platform where the contact occurred — Telegram, WhatsApp, Instagram, or LinkedIn. Block the account. If you've already sent funds, preserve all communications and file with the FBI IC3.

How do rug pulls work and how do I spot one before it happens?

A rug pull occurs when project developers attract investor liquidity into a token or pool, inflate the price through marketing and artificial volume, then withdraw all liquidity and abandon the project. I look for 4 warning signs: liquidity pools that aren't locked or time-locked, anonymous development teams with no verifiable history, unaudited smart contracts, and token distributions where developers hold more than 20 percent of supply. Check these factors using block explorers and DeFi analytics tools before investing.

Does the SEC regulate crypto, and does that protect me from scams?

The SEC has jurisdiction over crypto assets it classifies as securities, and it actively pursues fraud cases. However, SEC registration doesn't guarantee a project is legitimate or that your investment is protected against loss. Verify any entity's claims of SEC registration directly on EDGAR — don't trust a project's own statements about its regulatory status. I've found that fraudulent projects routinely claim registrations they don't hold.

What information should I collect if I think I have been scammed?

Preserve 4 categories of evidence immediately: transaction hashes from the blockchain (found in your wallet history or on a block explorer), all wallet addresses involved in the transfers, complete communication records with the scammer (screenshots, not summaries), and screenshots or screen recordings of the fraudulent platform including its URL. This documentation is required when filing reports with the FBI IC3, FTC, SEC, or state regulators. Act fast — scam websites are often taken down within days.

Sources & References

  1. [government] What To Know About Cryptocurrency and Scams (accessed 2026-04-09)
  2. [government] Cryptocurrency Investment Fraud — FBI (accessed 2026-04-09)
  3. [regulatory] Investor Alert: 5 Ways Fraudsters May Lure Victims Into Scams Involving Crypto Asset Securities (accessed 2026-04-09)
  4. [government] CFPB Publishes New Bulletin Analyzing Rise in Crypto-Asset Complaints (accessed 2026-04-09)
  5. [government] Beware Cryptocurrency Scams — Massachusetts (accessed 2026-04-09)
  6. [government] Crypto Scam Tracker — California DFPI (accessed 2026-04-09)
  7. [consumer_protection] What to Know About Cryptocurrency Scams — AARP (accessed 2026-04-09)
  8. [technical] Common Cryptocurrency Scams and How to Avoid Them — Kaspersky (accessed 2026-04-09)

Related Investigations

  • investigation into deepfake crypto scam tactics — For a deep dive into how AI-generated media fuels these schemes, see our investigation into deepfake crypto scam tactics.
  • scam platforms fabricate trading profits — I investigated how scam platforms fabricate trading profits using pre-programmed dashboards that display fake numbers.
  • PrimeAura — I've seen this exact 3-phase pattern in our investigation of PrimeAura, where victims reported weeks of friendly communication before any mention of trading.

D. Ortiz — D. Ortiz is an investigative writer at CryptoKiller who tracks fraudulent crypto platforms across ad networks, regulatory databases, and blockchain records. His investigations have exposed scam operations spanning 8 countries.

Back to blog