Common Airdrop Scams and Warning Signals

Traffic Scam: Requires following on Twitter, joining Telegram/Discord groups, actually accumulating followers for marketing accounts, then renaming to promote scam information.

Authorization Trap: Induces users to authorize a smart contract, leading to the transfer of wallet assets. For example, the Zepe airdrop scam, where users have their assets stolen due to authorizing DEX transactions.

Private Key Leak: Requests users to enter private keys or recovery phrases to "claim" airdrops, directly resulting in wallet theft.

Fake Official Website: Disguises as an official airdrop page, inducing users to connect their wallets or transfer funds.

Anti-Scam Strategies

Verify Projects: Check if the project is listed on CoinGecko or CoinMarketCap, and search for team background and investment information.

Check Contracts: Use Etherscan or Sui Explorer to analyze smart contracts, confirming they are open source and contain no malicious code. PeckShield recommends regularly revoking authorizations for rarely used DApps.

Small Amount Testing: Use a new wallet to participate in airdrops, keeping only a small amount of test tokens to avoid risks to the main wallet.

Avoid Private Key Leaks: Never share recovery phrases or private keys, and ignore any prompts asking for sensitive information.

Use Security Tools: Install Wallet Guard or Scam Sniffer browser extensions to detect malicious websites and contracts.

3. Safe Operational Habits

Hardware Wallets: Use Ledger or Trezor to store large amounts of assets, and only use hot wallets for airdrop participation.

Multi-Factor Authentication: Enable 2FA (Google Authenticator) to protect exchange and wallet accounts.

Be Cautious of High Returns: If an airdrop promises "high-value tokens", it is often a trap, so be cautious. #空投安全指南