#空投防骗手册

1. Fake Airdrop Activities

Scammers forge airdrop pages of well-known projects and lure users to connect their wallets or submit their private keys through social media, emails, and other channels. For example, claiming "free tokens" while actually stealing wallet assets (such as fake Jupiter airdrops in the Solana ecosystem).

2. Impersonation and Phishing Attacks

◦ Impersonating exchange customer service or industry KOLs to privately chat with users, requesting sensitive information under the pretext of "assisting with airdrop claims."

◦ Sending phishing links disguised as official announcements to lure users into authorizing malicious smart contracts (such as fake TokenPocket official website).

3. Malicious Smart Contracts

Airdrops require users to interact with unverified contracts, which seem to be token exchanges but actually transfer assets automatically after authorization. Some contracts set up "fake exchange pages" displaying false transaction success notifications.

4. Junk Token Inducement

Actively sending unknown tokens or NFTs to users' wallets, embedding phishing website links within the token names and images (such as zepe.io, etc.), enticing users to visit and authorize their assets.

5. Urgency Traps

Setting up fake countdowns such as "24-hour limited claims" or "last 100 spots" to exploit psychological pressure and lower users' judgment.