--- title: "Cryptocurrency Phishing Scams: 2022’s top and Latest Threat Revealed by Security Regulators | Phish Protection" description: "The most significant hazards to investors in 2022, according to NASAA (North American Securities Administrators Association)." image: "https://phishprotection.com/og/blog/cryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators.png" canonical: "https://phishprotection.com/blog/cryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators/" --- Quick Answer The most significant hazards to investors in 2022, according to NASAA (North American Securities Administrators Association), are \_cryptocurrency and digital asset-related frauds\_. Investors should be aware of the current \[cryptocurrency phishing scams\](/blog/crypto-phishing-scams-gaining-momentum-with-more-coins-in-the-market/) getting more attention worldwide. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cryptocurrency%20Phishing%20Scams%3A%202022%26%238217%3Bs%20top%20and%20Latest%20Threat%20Revealed%20by%20Security%20Regulators&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators%2F&title=Cryptocurrency%20Phishing%20Scams%3A%202022%26%238217%3Bs%20top%20and%20Latest%20Threat%20Revealed%20by%20Security%20Regulators "Share on Reddit") [ ](mailto:?subject=Cryptocurrency%20Phishing%20Scams%3A%202022%26%238217%3Bs%20top%20and%20Latest%20Threat%20Revealed%20by%20Security%20Regulators&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2022/02/phishing-email-prevention-2378.jpg) The most significant hazards to investors in 2022, according to NASAA (North American Securities Administrators Association), are _cryptocurrency and digital asset-related frauds_. Investors should be aware of the current [cryptocurrency phishing scams](/blog/crypto-phishing-scams-gaining-momentum-with-more-coins-in-the-market/) getting more attention worldwide. According to the [FTC’s research](https://www.ftc.gov/news-events/blogs/data-spotlight/2022/01/social-media-gold-mine-scammers-2021), threat actors exploit popular social media platforms like Instagram and Facebook as a playground for pulling investment-related scams. Due to their popularity and excellent profits, crypto assets and stablecoins make appealing targets, making _cryptocurrency one of the most vulnerable marketplaces for investors globally_. ### Summary of the Report NASAA released a [report on top investor threats](https://www.nasaa.org/61477/nasaa-reveals-top-investor-threats-for-2022/?qoid=current-headlines) for 2022, highlighting **cryptocurrency threats** as the most significant of all. - _Scammers use investment scams with promises of guaranteed high returns with little risk_, which is why investors need to understand the threat properly and avoid scam artists. - 2022 will continue to see investors losing their crypto to scam artists via social media, unregistered private offerings, etc. - Cryptocurrency and other digital assets are not regulated, which is why scammers can dupe investors by offering Ponzi schemes and other fraudulent opportunities. Investors should understand the high risks of loss while tying their assets in cryptocurrency trading, crypto mining pools, and depository accounts. ![Phishing email prevention](https://media.mailhop.org/phishprotection/images/2022/02/phishing-email-prevention-2378.jpg) \*\* \*\* ### What are Cryptocurrency Phishing Scams? [Cryptocurrency phishing scams](/blog/a-hand-guide-to-know-about-crypto-scams-their-types-and-how-to-avoid-them/) involve _social engineering and scamming tactics in an attempt to steal security codes, private keys, and cryptocurrency directly_. Fraudsters use social media platforms such as Facebook and Instagram and request cryptocurrency to promise significant returns. Cryptocurrency phishing scams are not new and have been around for some time. One of the most famous cases of recent times was the 17-year-old Graham Clark from Florida. He [hacked the Twitter accounts](https://www.nytimes.com/2021/03/16/technology/twitter-hacker-florida.html) of notable figures such as Bill Gates, Elon Musk, Barack Obama, Joe Biden, and more and scammed individuals out of **$100,000 worth of cryptocurrency**. Cryptocurrency phishing scams can be initiated via: - **Texts:** _Cryptocurrency phishing messages with malicious links to cancel withdrawals leading to fake websites designed to steal login credentials_. Fraudsters may also approach you directly via call and present investment opportunities to entice you into giving up your account information or cryptocurrency. - **Emails:** Cryptocurrency [phishing emails](/blog/sophisticated-new-tactic-makes-phishing-emails-harder-to-detect/) with links to imposter websites designed to impersonate legal entities or organizations with deposit links that send your crypto assets to illicit addresses. These websites often con you out of your digital wallet credentials or have fake addresses for payments. - **Applications:** _Malicious actors also use fake mobile applications for fraud_. These mobile applications look authentic and have customer reviews highlighting opportunities provided by the app. The applications have inbuilt payment portals that might look authentic but are directed to the address of the scammer’s wallet. - **Social Media:** Social media platforms are among the biggest platforms for fraudsters who create phony profiles and reach out via DMs (Direct Messages). These profiles may have many followers and positive comments but use [social engineering](/resources/protection-against-social-engineering-phishing-and-ransomware/) and fake investment opportunities to steal from you. ### Why Scammers Are Targeting Cryptocurrency and Digital Assets _Cryptocurrency has topped the list for investment-related frauds due to the lack of a regulatory structure around digital assets_. Furthermore, cryptocurrency assets are entirely digital hence providing threat actors many vulnerabilities they can exploit. Another factor that attracts fraudsters to cryptocurrency is the lack of knowledge about how to keep oneself safe from **phishing attacks**. Individuals and investors are trying to get into the cryptocurrency market without proper knowledge and often find themselves roped into an easy investment scheme that they find lucrative, only to be conned. #### Key Statistics - The total loss due to [fraud via social media](https://www.ftc.gov/news-events/blogs/data-spotlight/2022/01/social-media-gold-mine-scammers-2021) platforms is **$770 million**, _involving nearly 95,000 people_. - FTC’s data spotlight report of 2021 revealed that **64% of social media** investment frauds involved cryptocurrency payments. - **$14 billion** was lost to [fake digital wallets](https://blog.chainalysis.com/reports/2022-crypto-crime-report-introduction/) and addresses in 2021. - _20% of the money lost due to romance scams since October 2020_ involved [cryptocurrency transfers](https://www.ftc.gov/news-events/blogs/data-spotlight/2021/05/cryptocurrency-buzz-drives-record-investment-scam-losses) for investments. With the wide adoption of digital assets and cryptocurrency, these statistics are likely to get worse moving forward, which is why it would be best to [educate yourself](/products/phishing-awareness-training/) before you are the one who is scammed. ### How to Avoid Crypto Phishing Scams? While the losses faced by losing cryptocurrency can be huge, a few simple steps can help you avoid threat actors. Investors can [prevent crypto phishing scams](/blog/a-hand-guide-to-know-about-crypto-scams-their-types-and-how-to-avoid-them/) and typical fraudulent schemes by: - **_Verifying Individuals and Websites_\*\*\*\*:** Fraudsters may be found on social media or counterfeit services, which is why investors should always confirm the integrity of an offer by identifying and evaluating the trade and the person presenting it. _Always ask for formal paperwork and go through the website_. Fake websites often have minor grammatical errors that are easy to find. Always validate digital addresses for payments on the official websites before initiating payment and **avoid payment via QR codes**. - **Don’t Get Swayed Away By the Fake Clientele:** _Scammers utilize fraudulent testimonials and excellent ratings to build a false favorable picture for their services_. Scammers also create bogus comments, so one should learn to identify misleading reviews and information to safeguard themselves. - **_Lookout for Warning Signs:_** Scammers tempt investors by promising large profits in a short period, such as hours or days. If an opportunity presents itself with high-risk low rewards, it’s most likely a cyber adversary attempting to defraud you. Investors should learn to recognize such scams and steer clear of investments that appear effortless and offer immediate high yields. _Always avoid free giveaway schemes that ask for your personal information_. ![Phishing email prevention](https://media.mailhop.org/phishprotection/images/2022/02/phishing-email-prevention-2379.jpg) ### Final Words Cryptocurrency [phishing scams](/blog/the-latest-phishing-scams-hackers-can-bypass-two-factor-authentication/) and other digital asset-related fraudsters are rising and pose a significant threat to investors. You can easily avoid scam artists targeting your cryptocurrency by learning to identify the telltale signs of any fake investment opportunity. With the rising adoption of cryptocurrencies, 2022 can be the year where the _number of cryptocurrency-related phishing scams can rise significantly_. Hence, users must keep themselves aware of the latest **phishing tactics** and adopt [anti-phishing solutions](/) to safeguard their digital assets and keep malicious actors at bay. ## Topics [ Phishing ](/tags/phishing/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Foundational 5m 0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[ Foundational 4m 13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[ Foundational 4m All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[ Foundational 4m 2021 Phishing Trends You Need To Be Wary Of Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cryptocurrency Phishing Scams: 2022’s top and Latest Threat Revealed by Security Regulators","description":"The most significant hazards to investors in 2022, according to NASAA (North American Securities Administrators Association).","url":"https://phishprotection.com/blog/cryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators/","datePublished":"2022-02-14T05:20:38.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2022-02-14T05:20:38.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators/"},"articleSection":"foundational","keywords":"Phishing","wordCount":1023,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2022/02/phishing-email-prevention-2378.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Cryptocurrency Phishing Scams: 2022’s top and Latest Threat Revealed by Security Regulators","item":"https://phishprotection.com/blog/cryptocurrency-phishing-scams-2022s-top-latest-threat-revealed-security-regulators/"}]} ```