GUBIDAO
GUBIDAO · Crypto for stock investors
Risk

Common Crypto Scams: The Traps Seasoned Stock Investors Fall Into

Years of trading stocks, and you figure you've seen it all and won't get conned. But crypto scams are aimed precisely at certain habits and blind spots of seasoned investors. This piece pulls apart the most common patterns one by one so you walk away knowing what to watch for.

Shen Mu · GUBIDAO editorialUpdated 2026-06-14~13 min
A fish hook holding a crypto icon, against a phishing interface disguised as a legitimate platform
Crypto scams keep changing their costumes, but the underlying playbooks are few — recognize them and you're hard to fool.

I have a friend — a decade-plus in A-shares, convinced he could sniff out a con artist's script in one line. Within a few months of moving into crypto, in a group where a "mentor was calling trades," he put a not-small sum into a "platform" that showed steady, comfortable profits, and walked away with nothing — principal and gains, all gone. Something he said afterward stuck with me: "I can fend off the scammers in the stock market — I couldn't fend off the crypto ones, because they wore a different skin and I didn't recognize them."

That's the whole problem. The core of a scam is roughly the same across times and places, but crypto dresses them in new jargon and new vehicles, so your familiar alarm system fails to trip. This piece won't scare you — it'll honestly take apart the most common types so the next time you see one, you'll know it.

Why seasoned investors are easier to scam

It sounds counterintuitive, but seasoned stock investors do have a few specific "soft spots" in crypto:

  • Overconfidence — "I understand investing." Precisely because of stock experience, it's easy to think "this little trick can't fool me," which lowers your guard and lets a new shell confuse you.
  • A dulled sense for "high returns." In stocks, a mid-teens annual return is already great; crypto routinely advertises doubling, and seasoned investors are sometimes drawn in by this "rationalized windfall." In truth, the higher the promised return, the more you should worry.
  • Unfamiliarity with new tools' risk points. Wallet approvals, private keys, on-chain transfers — none of this exists in stocks, and those knowledge gaps are exactly where scammers strike.
  • A habit of "someone has my back." Stock investors assume they can seek recourse when things go wrong, but in many crypto situations, once it's sent it can't be retrieved. That gap in understanding around irreversibility makes people slack on prevention.

Recognize these soft spots and you'll see why "I'm a veteran" can be the most dangerous mindset of all.

Pig-butchering: the most toxic one

Pig-butchering is the most damaging and most insidious type, because it steals more than money — it steals feelings and trust. The classic script goes like this:

The scammer first makes contact through social apps, dating platforms, even an "accidentally added" messaging contact, spends a long time chatting with you, and builds affection or trust (this stage is called "raising the pig"). Then they slowly steer the topic toward investing, claiming inside knowledge or a "guaranteed-profit" channel, or leading you into a "very professional"-looking investment platform.

The toxic twist comes later: this platform is usually built by the scammer and fully under their control — a fake operation. You invest a little at first, and it really does let you "make money" and withdraw it, dispelling all your doubts. Once you believe and scale up, the platform starts inventing reasons to block withdrawals — you owe tax, you need an "unfreezing fee," the system's under maintenance — until you've poured in everything, the platform vanishes, and you're blocked (this stage is called "butchering the pig").

A "platform" that lets you make a small withdrawal doesn't prove it's real; that's just part of the bait. A place where you have to keep paying to "unfreeze" your principal — that principal never existed.

How to spot it: anything that "befriends you first, then leads you to invest" can basically be sentenced to death on the spot; any platform that has you send money to an unfamiliar account or address that isn't your own legitimate exchange, treat with high alarm; anything where "the more you invest the more you can withdraw, but you can't withdraw after you scale up" is textbook pig-butchering rhythm. In real trading, your money should sit in your own account that you can withdraw at any time — not behind a link a "mentor" handed you.

Why is this scam especially lethal for seasoned investors? Because it precisely exploits your "I understand investing" confidence. The mentor's pitch is stuffed with candlesticks, support levels, position sizing — all the terms you know, delivered fluently, fooling you into thinking you've met a "fellow pro." But the more "professional-sounding" the trade calls, the more you should worry — if someone genuinely had a reliable money machine, they'd quietly get rich; why would they hand-hold a stranger? Your expertise here isn't a shield — it becomes the very hook scammers use to win your trust. See through that layer and you'll never again drop your guard because "they really know their stuff."

Fake exchanges and fake apps

This type preys on newcomers who can't yet tell legitimate platforms apart. The scammer builds a fake website nearly identical to a real exchange, or a fake trading app (often spread through unofficial channels or links posted in groups). You register, deposit, and trade on it, everything looks normal — but your money goes straight into the scammer's pocket, or the "coins" you bought simply don't exist.

The danger is its extreme realism — the interface, logo, even support can all be faked convincingly, and beginners struggle to see through it at a glance. The core defense is just one thing:

  • Only download and access through official channels. Verify the official domain (type it yourself or bookmark it; don't click links others send), and download apps from the official app store or via the route the official site points to. Any "download link posted in a group" or "installer DM'd by support" should be treated as suspicious.
  • Check every character of the URL. Phishing sites use look-alike domains (swapping the letter o for 0, or adding a hyphen); without looking closely you'd never catch it.
  • Verify a platform with a small amount before going big. If you're unsure about a platform, test a small withdrawal to confirm it works — but the safer move is to use only reputable, highly-regulated, large mainstream platforms from the start.

This is exactly why we keep recommending beginners start with regulated, well-known large platforms — not to shill for them, but to lower your odds of stumbling onto a fake. For how to tell legitimate exchanges apart and what the sign-up flow looks like, see brokerage accounts vs exchange accounts: 6 differences.

Airdrop phishing and malicious approvals

This type is unique to crypto — nothing like it in stocks — and specifically exploits beginners' unfamiliarity with how "wallet approvals" work. Common forms:

Your wallet suddenly receives an "airdrop coin dropped from the sky," or you see a tempting "claim a free airdrop" / "collect your reward" campaign. When you go to "claim" or "activate" it, the site asks your wallet to perform an "approval" or signature. That's exactly where it goes wrong — this approval may be requesting that you hand over permission to move the assets in your wallet. Once you blindly sign or approve, the scammer can drain your coins.

The scary part is that it doesn't need to steal your private key — it just needs to trick you into "clicking confirm." Many emptied wallets happen because the owner connected to a phishing site and signed an approval they didn't understand. Defense points:

  • Don't touch or approve airdrop coins of unknown origin. If unfamiliar coins appear in your wallet out of nowhere, the safest move is to treat them as if they don't exist and never interact with them.
  • Don't connect to unfamiliar sites or sign approvals you can't read. Every signature/approval request your wallet pops up, look closely at what it's actually trying to do. If you can't understand it, decline.
  • Separate your wallet from large holdings. The wallet you use daily to interact with apps shouldn't hold large amounts; keep your long-term, large funds in a separate wallet (or even a cold wallet) that doesn't connect to random sites. This thinking is covered in detail in what a crypto wallet is.
  • Memorize the iron rule: any "airdrop," "support," or "campaign" that asks for your seed phrase / private key is 100% a scam, no exceptions.

Build up your defenses first

The first step against scams is getting the basics straight. Learn how wallets and private keys work, then use our tools to nail down your trading costs — and become a participant who never has to panic.

Understand wallets and keysOpen the tools

This site is an investor-education site and does not endorse any "trade-calling mentor" or third-party platform. For decisions involving money, use your own judgment.

Pump-and-dump: a familiar recipe

This type should resonate most with seasoned stock investors — it's the crypto version of "manipulation" / "pump-and-dump." The method mirrors certain A-share theme rallies exactly:

A group of people (or a whale, or a "signal group") quietly buys a low-liquidity small coin at the bottom, then hypes it hard across social media, signal groups, and KOLs, manufacturing a "this coin's about to take off" atmosphere to draw in a herd of retail investors. After the price is rapidly pumped, the earliest entrants dump heavily to cash out while retail takes the bags, the price promptly collapses, and the retail latecomers are left firmly trapped at the peak.

Crypto pump-and-dumps are even more rampant than in A-shares, because: weak regulatory constraints; thin small-coin liquidity that's easier to manipulate; fast-spreading social-media calls; and no daily price limits to stand in the way (see no daily price limits), so the price can be pumped fast and hard. How to spot it:

  • Be wary of every "inside tip," "come along for the ride," or "about to pump" call. If there were a real, sure-fire inside edge, why tell you for free? You're most likely the one being recruited to take the bags.
  • Treat suddenly-soaring, heavily-hyped small coins with deep suspicion — especially those with empty fundamentals, a dead chain, and pure hype (how to read fundamentals: what fundamentals mean in crypto).
  • Use your instinct for theme stocks. That A-share script of "rumors everywhere, volume surge and price spike, then wreckage" plays out the same in crypto — bring the wariness across.

There's also a crypto-specific variant called a "honeypot." Its code has been tampered with: you can buy in, but you simply can't sell, or only the project team can sell. Your money goes in and can't come out; the chart still looks like it's rising, but you're already locked in. Ordinary beginners can't detect this at all, which loops back to the old principle: don't touch small coins of unknown origin, with no users, propped up by pure hype. What you save isn't just money — it's a chestful of grief.

Impersonating support and fake "official" accounts

The last type is impersonation. Scammers pose as exchange support, wallet officials, even staff of a specific project, reaching you through DMs, calls, or group messages. Common scripts:

  • "Your account has an anomaly / a security risk and needs verification," then they lure you into providing your password, verification code, even seed phrase.
  • "Let me help you resolve a withdrawal issue / unfreeze your account," guiding you to transfer or approve.
  • After you publicly ask for help (say, posting a question on social media), "support" proactively DMs you to "help solve it."

Remember one iron principle: legitimate platform support will never proactively DM you to ask for your password, verification code, private key, or seed phrase, and will never have you move money to a "safe account." If there's a real problem, you should contact support yourself through official channels (the official site, inside the official app) — never trust any "support" that comes to you. This is the same logic as the bank anti-fraud line "officials will never ask for your password," which seasoned investors should know well; you just have to carry that wariness fully into crypto.

What we observed

While compiling these patterns, we deliberately went through accounts of newcomers retelling how they got scammed. A recurring common thread: victims had almost all received some kind of "benefit that came to them unprompted" — someone who added them first, an inside tip handed over, a free airdrop sent, support that reached out. And those who kept their wallets safe were just as consistent: they treated any "opportunity that comes to you" with suspicion first, and for anything involving sending money, approving, or giving up a private key, they stopped first. This plain "whoever comes to you first, suspect them first" principle looks simple, but it blocks the most scams of all.

A set of hard anti-scam rules

The whole piece, distilled into a few hard rules you can execute and pin in your mind:

  • Seed phrase / private key: never give it to anyone, for any reason. This is the bottom line of bottom lines, no exceptions.
  • Anything promising "guaranteed profit," "protected principal with high interest," or "inside trade calls" is a scam. Investing has no sure things — stock investors know that better than anyone.
  • Benefits that come to you unprompted (people who add you, airdrops sent, support that reaches out): suspect first, talk later.
  • Use only official channels and regulated large platforms; check URLs and apps repeatedly.
  • Don't connect to unfamiliar sites, don't sign wallet approvals you can't read.
  • Self-custody large assets and split them up; don't pile it all in one place (see the wallet piece).
  • Slow is fast. Anything rushing you to "send money now, act now, miss it and it's gone" is manufacturing impulse so you can't think — the more urgent, the more you should stop.

One more thing to say on its own: if you really do get scammed, don't bottle it up out of shame or wishful thinking. Immediately stop all further payments (many people sink deeper inside the fantasy that "just a little more and I can withdraw my principal"), save all chat records, transfer receipts, and the other party's information, then report and seek help from your local police or relevant agencies according to your jurisdiction. Getting scammed doesn't mean you're stupid — the scammer's script is professionally designed to attack human weakness. Cutting losses promptly and preserving evidence is the right thing to do after being scammed.

Crypto really does have a lot of traps, but the vast majority of scams can't escape the patterns above. The skepticism you honed in stocks is the most valuable asset here — don't drop it just because you changed markets. Get the basics solid, keep a level head, and then look back at the market's rule differences and a lot becomes clearer: both 12 key differences between stocks and crypto and the complete stock-to-crypto guide are worth a read.

Further reading

Shen Mu · GUBIDAO editorial
"Shen Mu" is a pen name. Over a decade in A-shares plus Hong Kong and US markets, then a step into crypto — the wrong turns along the way became this site. We don't invent credentials; we only write about paths that worked.