Phishing websites and dapps try to trick visitors into providing their signin credentials or other sensitive information to gain control of their accounts or wallet. These scammers use emails, SMS text messages, social media, and search-engine advertisements to make their sites appear legitimate.
To avoid phishing:
Check that you’re using the correct dapp website URL.
Double-check that the dapp website is legitimate. Research the platform thoroughly to validate their services and authenticity.
Scammers are using social media to carry out their giveaway scams. They post screenshots of forged messages from companies and executives promoting a giveaway with hyperlinks to fraudulent websites. Fake accounts will then respond to these posts making the scam appear legitimate. The fraudulent websites will then ask that you “verify” your address by sending cryptocurrency to the scam giveaway.
To avoid giveaway scams:
Never send cryptocurrency to giveaways under the guise of address verification.
Be skeptical of all giveaways and offers found on social media. Do not trust screenshots in reply messages as images can be forged and altered.
Use a reputable search engine to do research on any entity soliciting you on social media. If the offer sounds too good to be true, it probably is.
Check the giveaway URL to make sure it’s legitimate.
An airdrop is when free assets are sent or “dropped” into your wallet by an asset issuer to draw awareness of a new cryptocurrency. We recommend you contact the asset issuer directly for guidance on how to move these assets. For example, some airdropped tokens may be frozen by their smart contract and have complex instructions for trading funds in which you will need the asset issuer’s help.
Be extra cautious when receiving airdropped tokens that you’re not familiar with.
For example: Some scammers will use airdrops to get your personal information and attempt to take over your accounts.
Remember that no legitimate airdrop campaign will ask for your 12-word recovery phrase.
Note: An asset can start out as an ERC-20 token and then move on to its own blockchain which may or may not be supported by Coinbase Wallet. Search the asset under Receive in your wallet to see if it’s supported.