Fake Accounts and Fraudulent Badges: New Wave of Phishing Targets Crypto Investors

In recent hours, the cryptocurrency community has detected a sophisticated phishing campaign that uses fake verification badges to compromise user security. According to reports from NS3.AI, attackers are impersonating legitimate projects like @ethena_lab, employing increasingly refined social engineering tactics to deceive cryptocurrency enthusiasts.

How Does This Impersonation Scheme Work?

Attackers have adopted a two-tiered strategy: first cloning authentic accounts using identical names and avatars, then adding fake verification badges to simulate legitimacy. These fraudulent profiles send personalized direct messages to active community members, impersonating official representatives of well-known DeFi projects. The goal is to redirect victims to malicious platforms where credentials or funds are stolen.

Red Flags to Identify Fake Verifications

The key to detecting these fake accounts lies in manually verifying the official profile on public channels. Pay attention to subtle differences: slightly altered email addresses, falsified URLs, or the absence of historical interactions with the community. Platforms like Twitter are strengthening their systems, but manual vigilance remains essential. If you receive messages from newly created accounts requesting data or wallet access, it is almost certainly a scam.

Essential Protection Measures

Never confirm credentials through direct messages, even if the account appears verified. Always access official websites directly from your browser without clicking links in messages. Enable two-factor authentication on your social media accounts and keep your passwords unique and complex. Immediately report any suspicious accounts to the respective platform and share the information with other community members.