#空投防骗手册 Scam Manual Scam Technique: Forging official websites that are highly similar to well-known projects, inducing users to connect their wallets or enter private keys, and subsequently transferring assets.

Identification Points: Abnormal domain suffixes (e.g., .com changes to .cm), unverified social media links, no official blue V certification.

Malicious Contract Authorization

Typical Trick: Requesting users to authorize unlimited smart contracts under the guise of "claiming airdrops," resulting in bulk transfer of wallet assets.

Warning Signals: Contract not open-sourced, no audit reports, or requesting authorization beyond necessary permissions (e.g., transfer rights).