If you have lost access to your cryptocurrency wallet, be cautious when searching for recovery tools online. Cybercriminals are creating fake websites that offer malicious software designed to steal your personal information rather than help you recover your assets.
How the Scam Works
Victims who have forgotten their wallet's 24-word seed phrase may search for a recovery program. Criminals host fake websites that appear legitimate, offering tools like the "Lost crypto wallets finder – cryptocurrency recovery toolkit." Once downloaded, the software collects browser passwords, documents, photos, and other sensitive files, packages them into a Zip file, and sends them to the attackers.
According to Alex Holland of the HP Security Lab, which identified the fraud, "Scammers are preying on people’s desperation to recover their cryptocurrency wallets. Perhaps the victim has forgotten the seed phrase used to access their wallet. If you wanted a way of recovering that, you could search 'free cryptocurrency recovery tool', which I did, and lo and behold one of these fake malware-laden tools came up in my search results."
Scale and Impact
While niche, the scam is lucrative enough to justify setting up fake sites. The malware can harvest data for future frauds, including financial theft. The site hosting the fraudulent toolkit has since been taken down.
Protecting Yourself
If you cannot remember your seed phrase or password, avoid panicking. "They’re preying on emotions. They want to take advantage of that moment of vulnerability," Holland warns. Legitimate recovery tools exist but should be verified through online reviews. If you suspect malware, remove it with reputable security software and reset passwords immediately, starting with banking credentials.
