Crypto phishing attacks are everywhere. It might not get better anytime soon 

When crypto prices go up, suddenly everyone becomes a target

OPINION
article-image

Artwork by Crystal Le

share

It’s a real mess out there these days.

I’m referring to the recent onslaught of attempted cyberattacks against the people and professionals of the crypto ecosystem. This week, Blockworks’ David Canellis reported that a wave of phishing attacks targeted crypto users, all under the guise of legitimate emails.

These attempted attacks prompted warnings from the real projects. “Unauthorized airdrop email sent from Token Terminal — do not connect wallets,” Token Terminal told users in a communication sent less than an hour after the scammy one.

These impersonations have impacted Blockworks as well. As we shared on Jan. 19, would-be attackers have pretended to be Blockworks recruitment staff. The goal was to interview victims for jobs that don’t exist and attempt to obtain their bank account information. 

The Block’s Tim Copeland also recently warned about scammers who pretend to be journalists. While not an old issue — fake profiles for popular crypto journalists have surfaced over the years — the issue seems to be especially frequent these days. 

As The Verge reported this week, scammers pretending to be journos sent out fake Calendly invites in an effort to compromise victims’ Discord accounts. Discord is a popular target because of the frequent use of Discord servers by crypto projects. 

Sometimes, the attack vector is as simple as this kind of singular link. A frequent impersonation target is MetaMask, with scammers prompting prospective victims to download a new version of the crypto wallet. Such a fate befell billionaire Mark Cuban last fall, as CNBC reported at the time.  

What gives? The simplest answer is probably the closest to the truth: With elevated digital asset prices, suddenly everyone is a target. 

The frothy environment makes scams like yesterday’s airdrop email wave feel especially enticing. Market euphoria — and the prospect of even greater rewards — appears to be making people think with their wallet instead of, say, the sharp skepticism required to survive in an adversarial online environment. Phishing attacks aren’t new, but the threat is never-ending, and when they do succeed, the attacks pose significant risks. 

Hell, even the Securities and Exchange Commission’s X account was compromised via SIM swap during one of the agency’s most momentous periods in the modern area. Later revelations that SEC security around the account was, well, utterly lacking is a reflection of an easy-going security attitude that few people can afford nowadays. 

“Trust nobody” may feel excessive, but a security-first mindset can save you time, money and a massive headache. Get a text asking you to buy some gift cards? Delete and block. Someone offering you tokens in exchange for a clicked link or downloaded app? Delete and block. Don’t have 2FA on all your accounts? Get it done today. 

One wonders if this will even be enough, especially as new technology progresses. Artificial intelligence tools can enhance impersonation efforts even moreso.

Voters in New Hampshire learned that lesson this week after a robocall bearing a message from an AI-generated Joe Biden instructed them to not vote during the presidential primary. 

Maybe things will improve someday. Maybe a mix of technological and social solutions offer a greater degree of protection. I hope it doesn’t become a situation where you simply can’t trust anyone who sends you an unsolicited message. Open communication is, after all, the bedrock of the internet.  

But it’s a real mess out there. Stay safe, readers. 



Get the news in your inbox. Explore Blockworks newsletters:

Tags

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

Brooklyn, NY

SUN - MON, JUN. 22 - 23, 2025

Blockworks and Cracked Labs are teaming up for the third installment of the Permissionless Hackathon, happening June 22–23, 2025 in Brooklyn, NY. This is a 36-hour IRL builder sprint where developers, designers, and creatives ship real projects solving real problems across […]

recent research

Research Report Templates (19).png

Research

Suilend has grown into the top money market and liquid staking provider on Sui. STEAMM, Suilend’s Superfluid AMM, presents a compelling avenue for growing market share within Sui’s DEX landscape and revenue generation for the protocol. Suilend’s multi-product suite position it well for owning market share across key verticals. While current metrics across the Sui ecosystem are likely inflated due to Sui Foundation incentive programs, SEND trades at amongst the lowest multiples in the lend/borrow sector, suggesting that a bull case for continued growth in the ecosystem may be mispriced.

article-image

The stablecoin issuer now plans to offer 32 million Class A common stock shares at a price of up to $28 each

article-image

Let’s go whale watching, Bitcoin style: Investigating the mysterious “12ib7” wallet now worth $3.2 billion

article-image

Bitget’s L2 is undergoing a leadership change and will be helmed by Colin Goltra, formerly the blockchain’s chief growth officer

article-image

The funding was spread out across 61 rounds, a slight dip in both number of rounds and total funding in comparison to other months

article-image

Why is it controversial to say things are better than they used to be?