- Hackers impersonate security firms to breach crypto users’ data.
- $1.1 million lost in recent scam involving fake codes.
- Attacks complicate digital asset recovery efforts via privacy protocols.
Hackers are posing as security company employees to steal cryptocurrency private keys, warns blockchain security firm SlowMist as of June 2025.
The recent warning highlights the sophistication of phishing tactics targeting cryptocurrency users, raising concerns over user safety.
“These impersonation tactics often begin with establishing credibility through fake profiles and websites, followed by creating artificial urgency to compel victims to take immediate action that compromises their security.”
— SlowMist Security Team, Blockchain Security Firm
SlowMist reported that hackers, posing as security experts, are defrauding cryptocurrency holders. Recent scams included a $1.1 million loss from fake withdrawal codes.
Sophisticated impersonation tactics involved fake profiles and websites, convincing users to download malicious software.
The crypto industry faces increased financial losses, with scams like fake security tools at domains such as “signature[.]land.” Mobile-based schemes also contribute to significant financial damages.
Globally, users are urged to remain vigilant.
Fraudsters often work undetected, hiding assets using privacy tools like Railgun, said SlowMist. The company’s security tools, MistEye and MistTrack, play key roles in threat identification.
Efforts for recovery remain complex due to the use of privacy-centric protocols, highlighting the need for strong security practices and awareness among crypto holders.
