How to protect yourself from Bitcoin scams

When Twitter was hacked recently, it was to engineer a Bitcoin scam on a scale never before seen. Accounts owned by celebrities, politicians, large organizations, and crypto exchange leaders such as Binance’s Changpeng Zhao were all compromised by hackers, who then used their accounts to scam people out of their BitcoinBitcoin holdings.

There’s still no official verdict on how exactly the hack took place, but Mikko Hyppönen, chief research officer at cybersecurity firm F-Secure, shared one possible explanation with Decrypt:

"We believe the unknown attackers used a social engineering attack against key Twitter employees,” he explained. “They gained access rights, credentials or remote access to Twitter's internal systems and tools. That effectively made them gods on Twitter; they could do anything."

Regardless of how the attack took place, its instigators made off with at least $120,000 worth of Bitcoin. While we hopefully won’t see a scam of this magnitude take place again, similar scams remain commonplace online, raking in some $24 million this year alone.

How to keep your Bitcoin safe from scams

The scale of the recent Twitter hack may have been unprecedented, but the actual mechanics of the scam are familiar: a celebrity invites you to sent Bitcoin to a particular address, and they'll double your money. 

Bitcoin giveaways, other scams pull in $24 million so far this year

Crypto criminals are stealing more money than ever—and they’re not even trying very hard.  In the first six months of 2020 alone, $24 million in Bitcoin was bagged by scammers, according to a report released today by blockchain tracking and analytics provider Whale Alert. It’s the first report from a new “blockchain crime reporting, tracking, and analysis tool” called “Scam Alert” that the firm launched two weeks ago. 🚨🚨🚨 Scam Alert has been online for a few weeks now and we have written a s...

The good news is that there’s an incredibly effective way to guarantee that your Bitcoin is safe from these scams—and the answer is, perhaps unsurprisingly, common sense.

Take the message sent out by Kanye West’s account, which stated that, “I am giving back to my fans. All Bitcoin sent to my address below will be sent back doubled. I am only doing a maximum of $10,000,000.”

Given Kanye’s long history of… unusual tweets, you could be forgiven for thinking that the eccentric rapper and one-time Presidential candidate was telling the truth. But the message boils down to an unlikely premise: that a wealthy individual, in a fit of largesse, is simply giving away free money.

In the same manner in which you’d (hopefully) never send money in response to an email from a Nigerian prince, exercising caution is your number one defense. "Normal Twitter users are safe from this attack—except if they fell for the scams,” Hyppönen explained. “Listen, nobody is going to give you free money if you first send them money. Not even Bill Gates. If something seems too good to be true, it's never true. Especially on the Internet."

Indeed, a cursory look at some of the personalities caught up in the attack would be enough to cast doubt on the claims made in their hijacked tweets. Elon Musk, one of those whose Twitter accounts was compromised, owns just 0.25 BTC. Democratic Presidential candidate Joe Biden, another victim of the hack, subsequently tweeted that he doesn’t own Bitcoin, “and I’ll never ask you to send me any.”

Elon Musk reveals how much Bitcoin he owns

Billionaire entrepreneur Elon Musk yesterday told the world how much Bitcoin he owns and it's somewhat… modest—for a billionaire who had tweeted memes about Bitcoin in the past.  Commenting on the J.K. Rowling tweet which sent the crypto-world into a frenzy, the Tesla CEO—one of the world’s richest men with a net worth of $40 billion—disclosed that he owns just 0.25 Bitcoin. Today, that is a little under $2,500-worth of the cryptocurrency.  I still only own 0.25 Bitcoins btw — Elon Musk (@elonm...

However, scammers can use other tricks to appear bona fide. One Reddit user recently shared a false campaign in which Bill Gates was purportedly promising to double Bitcoins sent to a nefarious address. Worryingly, the ad for the scam was actually served on Google’s own ad platform, lending it a veneer of legitimacy. "Sites like Twitter and Google have a really hard time filtering out all the badness,” said Hyppönen. “The amount of traffic on these systems is just amazing, and the ways users can get scammed are endless. It's just not an easy job to do."

A secondary line of defense is provided by exchanges themselves, who take extra precautions to warn users of any suspicious activity. “We have taken steps now and in the past to blacklist the address[es] and we show customers a scam warning dialog box if they're about to send money to a known scam address,” Roopa Ramaiya, head of PR and communications at London-based exchange Luno, told Decrypt. Like other exchanges such as Binance, Luno also provides advice on how to avoid scams.

Locking down your cryptocurrency

Although the recent Twitter Bitcoin scam relied on psychology to trick crypto owners into parting with their coins, rather than directly hacking their wallets, it’s still worth taking additional steps to keep your Bitcoin safe.

Unless you’re actively trading crypto online, it’s best to avoid leaving your cryptocurrency on an exchangeexchange. Although many exchanges have insurance, the safest place you can leave your coins is in a walletwallet that you hold the private keys to.

If you want to go a step further than a desktop or smartphone wallet, you can also use dedicated crypto hardware wallets, made by companies such as Ledger, Trezor and SecuX.

Best Crypto Wallet: The Top 8 Hardware Wallets

When it comes to storing cryptocurrencies safely, hardware wallets are widely considered to be the gold standard. Hardware wallets keep the private keys to your crypto stored in a secure offline environment—meaning that unlike software wallets, they're completely immune to online attacks. The best hardware wallets are also resistant to physical tampering. Hardware wallets are ideal for anybody looking to safely store a substantial cryptocurrency portfolio, or carry their portfolio with them on t...

“Compared with a software wallet, hardware wallets hold your private keys offline for most of the time,” Woody Cheng, a spokesperson at SecuX, explained. “In addition, a hardware wallet with a secure element can enhance the protection from any physical or online attacker.”

As most people invest in crypto and hold assets for a long time, he added, “I would strongly advise all crypto investors to use a hardware wallet to hold their long term investments in an environment isolated from the Internet and hackers.”