How to Identify Phishing Threats and Avoid Common Scams

Cybercriminals constantly seek new vulnerabilities. Given Cwallet's nature as a centralized platform, scammers may attempt to impersonate official administrators, support staff, or even build fake Cwallet websites. Their goal is always the same: to gain access to users' assets.

What are Spoofing and Phishing?

Spoofing and phishing are fraudulent techniques where criminals impersonate a legitimate source to deceive you. This is typically done via email, Telegram, Discord, or text message. They will attempt to direct you to a "phishing" website that mimics the real Cwallet, or send you malicious links. If you interact with these links or websites, your funds are at critical risk.

These techniques operate in two primary ways:

Information Theft: Tricking users into revealing sensitive information. This includes their email address, one-time passwords (OTP)/verification codes, login password, payment password, and even 2FA. Providing this information can grant scammers direct access to users' digital assets.
Deception & Impersonation: Posing as official sources on Telegram, Discord, and other social platforms. They exploit users' trust in the Cwallet brand to convince users to voluntarily transfer their assets, often under the guise of "fixing an issue".

Both tactics rely on psychological manipulation. Therefore, teaching users to identify scammers became one of the most important lessons. Understanding and recognizing these scams is the most crucial step in keeping your information and assets secure.

Types of Cryptocurrency Scams

Scenario 1: Impersonating Cwallet Official Staff.

This involves scammers posing as "Cwallet customer support" or "Admins" to contact users via social media such as Telegram, Discord, or others.

A common tactic is to use a username that is nearly identical to, or a subtle misspelling of, an official Cwallet staff member's name.

How to Prevent: Do not share your personal details, especially passwords, verification codes, or 2FA.
Crucial Rule: Cwallet official staff or group mods will NEVER send users a direct message (DM) first.
Solution: Verify any Cwallet official staff member using our official verification tool here: https://cwallet.com/verification

Scenario 2: Fake Cwallet Website or Phishing DApp Links with Fake Cwallet Official Staff.

Scammers always impersonate Cwallet official staff and send users direct messages (DM) with Fake Cwallet websites or malicious DApp links. Both are designed to steal users' passwords, 2FA, and more.

How to Prevent: Do not click any suspicious link. NEVER share your security information. And we also strongly advise against connecting your Cwallet to any suspicious or unverified DApp links.
Critical Reminder: Cwallet official staff will NEVER ask for users' password, 2FA.
Solution: Always double-check the website URL, and bookmark the official Cwallet website here: https://cwallet.com/

Scenario 3: Malicious Google sheet with Fake Cwallet Official Staff.

Scammers pose as Cwallet official support and send users a Google sheet link, claiming it's for "support" or "refund". This form will then ask for users' passwords, verification codes, or other sensitive data.

How to Prevent: Cwallet will NEVER use a Google sheet to collect users' sensitive information or resolve support issues. Cwallet will NEVER ask for users' sensitive information, like passwords, 2FA, and more.
Solution: If you need help, use only Cwallet official channels here:
- Live support: https://cwallet.com/support
- Official staff: https://cwallet.com/verification
- Official support email: [email protected]

Scammers create fake Cwallet bots, groups, and social media accounts to gain users' trust. The fake bot might ask for users' sensitive information, while a fake group and social media account are used to attract more users with the name of Cwallet, so that they can execute widespread scams.

How to Prevent: Avoid searching for Cwallet groups, accounts, or bots directly on social media. These platforms are filled with fake accounts designed to impersonate our brand.
- On platforms like Twitter (X), our official account will be verified.
- On platforms like Telegram, there is no official verification system. Scammers can easily copy our name, logo, and may even add fake "verified" emojis to their names to trick you.
Solution: Check Cwallet official links here: https://link3.to/cwallet

Scenario 5: Fake Cwallet iOS App

It is very important to note that on the Apple App Store, the official Cwallet application is currently branded as CozyWallet.Scammers exploit this distinction. They may publish fake apps named "Cwallet" to mimic our Web and Android branding, hoping to deceive users who search directly for the name "Cwallet" on the Apple App Store.

How to Prevent: Do not rely on App Store search results alone. To be safe, only download the app by clicking the official download buttons on the Cwallet website.
Solution: Use the direct, verified download links below:edia. These platforms are filled with fake accounts designed to impersonate our brand.
- Cwallet Android App: https://play.google.com/store/apps/details?id=com.blockabc.cctip
- Cwallet iOS App (CozyWallet): https://apps.apple.com/us/app/cozywallet/id6502897143

Scenario 6: P2P Crypto Scam

A common P2P crypto scam involves a counterparty who fails to transfer the agreed-upon fiat currency or crypto after you have sent your payment.

In fact, to mitigate this risk, Cwallet does not officially support or endorse direct P2P transactions between users. Cwallet cannot prevent users' private actions, but please be aware that even if the other party claims to be a Cwallet user, Cwallet provides no security guarantees or asset recovery for private trades that occur outside our official platform.

How to Prevent: We strongly advise Cwallet users not to conduct P2P transactions outside the platform. If you need to buy or sell crypto, please do so on the verified platform.
Solution: For secure transactions, please use the official Cwallet Buy & Sell function here: https://my.cwallet.com/otc/dashboard

Your Security is a Shared Responsibility

Cwallet is committed to keeping your funds safe, but online security works best when we share responsibility together.

If you receive a suspicious message, spot a fake website, or encounter a potential scam:

Stop immediately. Do not click any links, provide personal information, or reply.
Report it promptly. Contact Cwallet official staff with screenshots or URLs right away.

Always be skeptical, and always verify. When in doubt, ask us — we’re here to help.

You can help us maintain a secure Cwallet ecosystem for all users.

PreviousHow to Check and Revoke a Device NextWhat are Deposit, Withdrawal, and Internal Transaction?

Last updated 45 minutes ago

hashtagWhat are Spoofing and Phishing?

hashtagTypes of Cryptocurrency Scams

hashtagScenario 1: Impersonating Cwallet Official Staff.

hashtagScenario 2: Fake Cwallet Website or Phishing DApp Links with Fake Cwallet Official Staff.

hashtagScenario 3: Malicious Google sheet with Fake Cwallet Official Staff.

hashtagScenario 4: Fake Cwallet Bots, Groups, or Social Media.

hashtagScenario 5: Fake Cwallet iOS App

hashtagScenario 6: P2P Crypto Scam

hashtagYour Security is a Shared Responsibility