Earn up to 50% APR
Boost earnings with NFTs
Play, HODL & earn more
Address Poisoning: The Crypto Scam That Doesn’t Need Your Private Key
-
Address poisoning is a growing crypto scam that exploits user behavior rather than hacking wallets. Instead of stealing private keys, attackers send small “dust” transactions from wallet addresses that closely resemble ones a victim frequently uses. When the victim later copies an address from their transaction history, they may accidentally paste the malicious lookalike — sending funds directly to the attacker.
Recent cases highlight the scale of the damage. In 2025, one victim reportedly lost $50 million in Tether (USDT) after copying a poisoned address. In February 2026, attackers drained 3.5 wrapped Bitcoin through a phishing tactic targeting Phantom users. Even prominent figures like Changpeng Zhao have urged wallet providers to strengthen safeguards. The blockchain itself isn’t broken — the scam works because users trust what they see in their own wallet history.
