Bitcoin 
Ethereum 
Tether 
XRP 
BNB 
Solana 
Dogecoin 
USDC 
Lido Staked Ether 
Cardano 
TRON 
Avalanche 
Toncoin 
Chainlink 
Wrapped stETH 
Shiba Inu 
Wrapped Bitcoin 
Sui 
Hedera 
Stellar 
Polkadot 
WETH 
Bitget Token 
LEO Token 
Bitcoin Cash 
Hyperliquid 
Litecoin 
Uniswap 
Pepe 
Wrapped eETH 
NEAR Protocol 
Ethena USDe 
USDS 
Aave 
Internet Computer 
Aptos 
Cronos 
POL (ex-MATIC) 
Mantle 
Ethereum Classic 
VeChain 
Render 
Monero 
WhiteBIT Coin 
Bittensor 
Dai 
MANTRA 
Artificial Superintelligence Alliance 
Arbitrum 
Filecoin 
Cybersecurity company Kaspersky revealed that malicious actors have devised a new scam involving seed phrases to target unsuspecting crypto users, according to a Dec. 23 blog post.
This sophisticated scheme preys on individuals’ curiosity and dishonesty, leading to financial losses for unsuspecting victims.
How the scam works
Seed phrases, crucial for recovering access to crypto wallets, are manipulated by scammers who pose as inexperienced users seeking help online via social media platforms like YouTube.
These fraudsters post their fake seed phrases on these platforms to lure individuals into accessing seemingly valuable wallets. Upon accessing these wallets, users find large amounts of stablecoins like Tether’s USDT, creating the illusion of an easy profit.
However, withdrawing these funds requires gas fees, usually paid in Tron’s TRX. The wallet is intentionally left without sufficient TRX, prompting users to transfer their funds to complete the transaction.
Once these funds are sent, they are immediately redirected to a wallet controlled by the scammers.
Meanwhile, the central key to this scheme lies in the wallet configuration. The scammers establish it as a multi-signature wallet, which requires approvals from multiple parties for any transaction. This ensures that the USDT cannot be transferred out by the unsuspecting user even after they pay the gas fees.
$2 billion in losses
The seed phrase scheme is part of a broader wave of crypto scams that have surged in 2024.
According to blockchain security firm Cyvers, crypto-related fraud has resulted in losses exceeding $2.3 billion this year, marking a significant increase compared to previous years. However, it remains 37% below the over $3 billion recorded in 2022.
The firm noted that malicious actors employ different attack schemes, including access control breaches, which have emerged as the most significant threat, accounting for $1.9 billion in losses from 67 incidents. Smart contract exploits follow closely, with $456.3 million stolen across 98 attacks.
Meanwhile, Cyvers noted that pig butchering scams have become a dominant fraud tactic this year. In these scams, fraudsters build trust with victims over time, often through dating apps or text messaging, before convincing them to invest in fake crypto projects and ultimately stealing their funds.
The firm flagged over $3.6 billion in victim funds across more than 150,000 addresses and 800,000 transactions in 2024, highlighting the scale and sophistication of these scams.
