1. Home
  2. NFT scam

NFT scam

Crypto scammers feel the chill: Revenue drops 46% in 2022 — Chainalysis

Falling crypto prices caused crypto scam revenue to plummet in 2022, though two scam types managed to persist.

Crypto scam revenue was slashed by almost half in 2022 due mainly to falling crypto asset prices, but two scam types managed to stay immune.

Crypto scam revenue in 2022, which includes investment scams, NFT scams and romance scams, among others, amounted to $5.9 billion in the year — down 46% from 2021.

The data came from a Feb. 16 crime report from Chainalysis, which attributed most of the decline in scam revenue to poor market conditions — as lower crypto prices generally result in lower scam performance.

Yearly crypto scam revenues from 2017-2022. Source: Chainalysis.

Chainalysis however pointed to two different scam types that managed to stay relatively immune to the price falls — romance scams and giveaway scams.

"Scam revenue throughout the year tracks almost perfectly with Bitcoin’s price, consistently maintaining a three-week lag between price moves and changes in revenue. However, not every distinct type of scam follows this pattern — some types of scams see revenue changes increase as crypto asset prices decrease," explained the firm, adding: 

"For instance, unlike other kinds of scams, romance and giveaway scams don’t show a positive correlation with Bitcoin’s price."

Romance scams, while having lower overall revenue as a category, racked up the highest average victim deposit size in the year — with the average victim losing just under $16,000, nearly 3x more than the next biggest scam type. 

Average losses for victims throughout 2022 by scam type. Source: Chainalysis.

Romance scams typically involve building a relationship with the victim, with the scammer convincing them that they need their help.

Chainalysis said that these scam types are most likely to persist when crypto prices are down because it's playing to a victim's compassion rather than greed. 

"That kind of emotional pitch is probably equally effective regardless of trends in the wider market, because the victim’s primary goal isn’t to get rich quick, but rather to help someone they believe to be a potential romantic partner," the firm wro

Related: Scammers are targeting crypto users with new ‘zero value TransferFrom’ trick

Romance scams, and particularly "pig butchering scams" have been seen as a growing area of concern within crypto.

For example, a United Kingdom investigation published on Jan. 29 found that half of all crypto companies involved with scams in the state were linked to pig-butchering scams.

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive

US Arrests ‘Mutant Ape Planet’ NFT Creator in $3M ‘Rug Pull’ Scheme to Defraud Crypto Investors

US Arrests ‘Mutant Ape Planet’ NFT Creator in M ‘Rug Pull’ Scheme to Defraud Crypto InvestorsThe U.S. government has arrested and charged the creator of “Mutant Ape Planet” non-fungible tokens (NFTs) for allegedly defrauding crypto investors. “The purchasers were ‘rug pulled,'” the Department of Justice (DOJ) described, adding that millions of dollars in cryptocurrency were diverted for the NFT creator’s personal benefits. DOJ Takes Action Against NFT Rug Pull Scheme […]

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive

NFT Rug Pull: DOJ Charges Two People in Million-Dollar Scheme to Defraud Investors

NFT Rug Pull: DOJ Charges Two People in Million-Dollar Scheme to Defraud InvestorsThe U.S. Department of Justice (DOJ) has charged two people allegedly behind a million-dollar non-fungible token (NFT) “rug pull” scheme. They abandoned the NFT project within hours after selling out, deactivated the website, and transferred over $1 million in crypto to the wallets they controlled, the justice department explained. NFT Purchasers Defrauded in a Rug […]

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive

DOJ cracks down on ‘rug pulls’, charging Frosties NFT project founders

“You can’t solicit funds for a business opportunity, abandon that business and abscond with money investors provided you,” stressed IRS-CI Special Agent-in-Charge Thomas Fattorusso.

The Department of Justice (DOJ) has taken action against an alleged NFT rug pull, after it slapped the founders of the Frosties project with charges relating to fraud and money laundering.

The two founders are accused of purposely concealing their identities to operate a rug pull on the Frosties community by failing to deliver on the project’s roadmap and “utility” which touted rewards for NFT hodlers, giveaways, access to a Metaverse game and exclusive access to future mints from the project.

According to a March 24 release from the Attorney’s Office of the Southern District of New York, 20-year-olds Ethan Nguyen and Andre Llacuna were arrested in Los Angeles and both charged with one count of wire fraud and one count of conspiracy to commit money laundering in “connection with a million-dollar scheme to defraud purchasers” of the NFTs ‘Frosties.’

The DOJ’s complaint alleges that they “abruptly abandoned” and shut down the project within hours of selling out $1.1 million worth of NFTs, and transferred the proceeds to various crypto wallets “under their control in multiple transactions designed to obfuscate the original source of funds.”

“As the term suggests, a 'rug pull' refers to a scenario where the creator of an NFT and/or gaming project solicits investments and then abruptly abandons a project and fraudulently retains the project investors’ funds,” the release stated.

As part of the release, IRS-CI Special Agent-in-Charge Thomas Fattorusso warned that his team is watching crypto closely, and despite NFTs being a relatively new choice for financial investments, the “rules apply to an investment in an NFT or a real estate development,”:

“You can’t solicit funds for a business opportunity, abandon that business and abscond with money investors provided you. Our team here at IRS-CI and our partners at HSI closely track cryptocurrency transactions in an effort to uncover alleged schemes like this one.”

The DOJ also stated that prior to their arrests in Los Angeles, the duo were preparing to launch the sale of another NFT project dubbed “Embers” that was expected to generate “approximately $1.5 million in cryptocurrency proceeds.”

If they are found guilty, they may face a lengthy stay behind bars as each count carries a maximum sentence of 20 years.

Related: SafeMoon pump-and-dump lawsuit targets Jake Paul, Soulja Boy and others

While it appears that more than a few dodgy NFT projects flew under the radar of the DOJ in 2021, there is speculation that the department is ramping up its focus on the NFTs this year via its National Cryptocurrency Enforcement Team (NCET) which was formed in October.

In this instance, the investigation was conducted by agents from the Internal Revenue Service, Criminal Investigation (IRS-CI), New York Field Office of the Department of Homeland Security (HSI) and the U.S. Postal Inspection Service (USPIS).

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive

Rare Bears Discord phishing attack nabs $800K in NFTs

The account of a moderator from the non-fungible token project was compromised in the attack, posting a phishing link that drained user wallets.

Recently launched NFT project, Rare Bears, was hit with an attack, after a hacker posted a phishing link in the project's Discord channel, stealing nearly $800,000 in NFTs.

Analysis from blockchain security firm Peckshield detailed that the attacker was able to steal 179 NFTs, including Rare Bears and other NFTs from various collections, including CloneX, Azuki, a “mfer” from artist sartoshi, and 6 LAND tokens used for The Sandbox metaverse.

According to on-chain analysis, most of the NFTs were sold, netting the hacker 286 ETH, worth over $795,500, most of which was promptly put through Tornado Cash, a crypto mixer used to obfuscate the source of funds.

A slate of similar phishing scams have occurred in recent months on Discord, suggesting some teams need to more carefully consider the security on admin accounts. Earlier today, the Rare Bears team posted that they had hired security consultant and auditor “Pandez” for a full security audit of its Discord.

How the attack happened

According to an update posted by the Rare Bears team, the hacker gained access to the account of a Rare Bears Discord moderator known as “Zhodan”, posting an announcement within the group's channel that a new mint of NFTs was taking place.

It was a fake of course — a phishing link designed to steal funds from a users' wallet.

The update from the security audit found that the head of the project’s Discord account was compromised. The attacker, using the compromised account, then banned other members, or removed their roles from the server, thereby removing their ability to delete the posted phishing link.

The attacker then invited a bot which locked all channels on the server, removing the ability for others to publicly communicate that the posts and links were fake.

Rare Bears said the team was able to regain control of the server, removing the compromised account and transferring ownership to a new one, and that the server is secure from another attack.

Related: NCA wants regulation for coin mixers, but the crypto industry is already one step ahead

Speaking to Cointelegraph, security consultant Pandez said that users should look out for a few key signs that could mean a message is a scam.

“Almost no serious project will ever do a stealth mint,” Pandez said, “never click any links which appear like this.”

Pandez said other red flags are if channels are locked during a “drop” of a new NFT collection, if the link differs to those shared on Twitter or other official sources for the project, and if the link is continuously posted in the channel.

Past attacks of a similar nature have happened on Discord. In December, Solana NFT project Monkey Kingdom announced that hackers made off with $1.3 million of the community's crypto funds after a security breach. Attackers there also posting a phishing link which drained users’ wallets.

Last November, members of the Discord of popular NFT artist Beeple were also scammed, with attackers gaining access to a moderators account to post a phishing link, similarly draining user funds.

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive

Study Highlights the Most Common NFT Scams Amid the Current Mainstream Hype

Study Highlights the Most Common NFT Scams Amid the Current Mainstream HypeAs non-fungible tokens (NFTs) are becoming a global phenomenon increasingly due to their mainstream adoption, there are also concerns about the surge of related scams. A recent study revealed the most common NFT scams that are spreading on the net. Suspicious Domain Registrations With ‘NFT’ Word Surged 250% in March 2021 According to the research […]

Strategic Bitcoin Reserve Can Pay Off Over a Third of US National Debt by 2050, According to VanEck Executive