#空投防骗手册 #空投防骗手册
In the cryptocurrency space, airdrops can be both an opportunity and a trap. Here are my summarized practical experiences to help you participate in airdrop activities safely👇
Danger Signals Identification
1. Fake official websites/links
- Misspelled domain names (e.g., "Uniswaap.com"), no HTTPS encryption
- Short links pushed through social media DMs or comments (e.g., bit.ly)
2. Anonymous teams and vague information
- Project parties without public member identities, LinkedIn profiles, or past experience
- Whitepapers lacking technical details, only emphasizing "high returns" and "zero risks"
3. Forced collection of sensitive information
- Requests to input private keys, seed phrases, or pay “fees” to receive airdrops
- Fake KYC processes, inducing the upload of identification documents
4. Suspicious contract permissions
- Airdrop pages requesting unlimited token approvals (e.g., `Approve` function without limits)
- Contracts not open-sourced or not passing security audits (e.g., Etherscan shows unverified code)
Project Legitimacy Verification Methods
1. On-chain tracking tools
- Use Etherscan/BscScan to check the creator's historical records and the authenticity of the token liquidity pool
- Monitor wallet authorization status through DeBank or Revoke.cash
2. Community reverse investigation
- Search for the project name + "scam" keywords on Twitter/Discord to see user exposures
- Compare official announcement channels: scammers often forge Telegram groups or Medium articles
3. Team background digging
- Verify if team members have participated in credible projects (e.g., GitHub submission records)
- Check if they are listed on CoinMarketCap/CoinGecko (some projects forge certification marks)
Common Scam Tactics
Safe Operation Habits
1. Isolated independent wallets: a small hot wallet dedicated to airdrops, separated from main assets
2. Timely revocation of authorizations: use **Revoke.cash** to regularly clean up useless contract permissions
3. Small value testing principle: for new projects, only invest extremely low-value assets in the first interaction
4. Triple confirmation of links: obtain links only through official project social media (blue tick certification)
5. Security protection tools: enable wallet's “phishing mode” (e.g., MetaMask fraud detection)
Remember: Real airdrops will never ask for your private key or funds! Stay skeptical, verify from multiple sources, and you can protect your asset security.