Fake Airdrops: How Scammers Drain Wallets

That "free crypto" could cost you everything in your wallet.

Most "Free Crypto" Is a Scam

80-90% of airdrop announcements are scams designed to steal your funds. One wrong approval can drain your entire wallet in seconds.

What Are Fake Airdrop Scams?

Scammers pose as legitimate projects offering "free tokens" to lure victims into connecting their wallets to malicious websites. Once connected, they trick you into signing a transaction that gives them permission to transfer all your assets.

Unlike legitimate airdrops—which reward past users of a protocol—fake airdrops target random people who never used the project, hoping greed overcomes caution.

How Fake Airdrop Scams Work

The Bait

You receive a message (Twitter DM, Discord message, email, or see an ad) about free tokens. It often uses the name of a legitimate project like Uniswap, Arbitrum, or OpenSea.

The Fake Website

The link leads to a convincing clone of the real project's website. The URL is slightly different: claim-uniswap.org instead of uniswap.org.

Connect Wallet

You're asked to connect your wallet to "check eligibility" or "claim your tokens." This seems harmless—connecting alone usually doesn't expose your funds.

The Malicious Approval

To "claim" your tokens, you're asked to sign a transaction. This transaction actually gives the scammer permission to transfer your tokens. It might look like:

Approve: Spend unlimited USDC
setApprovalForAll: NFT Collection
eth_signTypedData_v4: [complex data]

Wallet Drained

Within seconds, automated bots transfer all approved assets out of your wallet. By the time you realize what happened, your funds are gone.

Types of Fake Airdrop Scams

Dusting Attacks

Scammers send worthless tokens directly to your wallet uninvited. When you try to interact with or sell them, you're led to a malicious site.

Rule: Never interact with tokens you didn't buy or earn. Ignore them.

Phishing Websites

Clone sites that look identical to real projects. May use typosquatted domains, fake SSL certificates, and stolen branding.

Rule: Always navigate to projects via official links from Twitter/Discord—never from DMs or ads.

Social Media Impersonation

Fake accounts that look like official project accounts, complete with similar handles, profile pictures, and follower counts.

Rule: Check for the blue checkmark, creation date, and whether real accounts follow them.

Discord/Telegram Bots

Automated messages in crypto communities or DMs announcing fake airdrops with urgency ("claim within 24 hours!").

Rule: Legitimate projects never DM you first about airdrops. Announcements come through official channels only.

Seed Phrase Requests

Some scams skip the smart contract and simply ask for your seed phrase to "verify" your wallet or "claim" tokens.

NEVER share your seed phrase. EVER. No legitimate service will ever ask for it.

How to Spot a Fake Airdrop

Sign	What to Check
Unsolicited message	Did they contact you first? Red flag.
Wrong domain	Is it the official website? Check letter-by-letter.
You never used it	Did you actually use this protocol? If no, why would they airdrop to you?
Urgency/FOMO	"Claim NOW!" "Only 24 hours left!" Real airdrops give weeks/months.
Unrealistic value	"You have $5,000 to claim!" Free money for nothing is bait.
Not on official channels	Is it announced on their real Twitter/Discord?

Understanding Wallet Approvals

When you interact with DeFi, you often grant "approvals" allowing smart contracts to move your tokens. Scammers exploit this:

⚠

Unlimited Approvals

Giving a contract permission to spend "unlimited" tokens means they can drain everything, forever, until you revoke it.

⚠

SetApprovalForAll

This gives access to ALL NFTs in a collection. One signature = entire NFT collection gone.

⚠

Signature Requests

Some signatures (like eth_signTypedData) can be used for gasless approvals—you don't even see a transaction fee, but you've still given permission.

How to Check & Revoke Approvals

Use these tools to see what approvals you've granted and revoke suspicious ones:

revoke.cash Etherscan Approval Checker BscScan Approval Checker

Real Fake Airdrop Examples

Fake Arbitrum Airdrop (2023)

When Arbitrum announced their real airdrop, scammers created dozens of fake claim sites within hours. Thousands of wallets were drained before warnings spread.

OpenSea Phishing Campaign

Users received emails claiming their NFT listings needed updating. The link led to a fake OpenSea that requested setApprovalForAll—draining entire NFT collections.

Uniswap Token Airdrop Scams

After the real UNI airdrop, scammers sent fake tokens called "UNI-V3" or "UniswapLP" to wallets, with links to claim sites that drained real assets.

How to Stay Safe

Use a burner wallet for claims

Create a separate wallet with minimal funds for airdrop claims. If compromised, you lose little.

Verify through official channels

Check the project's official Twitter and Discord before interacting with any claim site.

Read every approval carefully

Understand what you're signing. "Approve all" or "unlimited" should trigger suspicion.

Never share your seed phrase

No legitimate airdrop will ever ask for your seed phrase. Full stop.

Ignore random tokens in your wallet

Don't try to sell or swap tokens you didn't buy. They're likely traps.

Regularly revoke old approvals

Audit your wallet periodically with revoke.cash and remove unnecessary permissions.

Already Got Scammed?

Revoke approvals immediately

Use revoke.cash to remove all permissions from the scam contract.

Transfer remaining assets

Move any remaining funds to a new, clean wallet immediately.

Report the scam

Report to the impersonated project, and to scam databases like ChainAbuse.

Consider the wallet compromised

Don't use that wallet for anything valuable going forward. If you shared your seed phrase, consider that wallet permanently compromised.

Got an Airdrop Offer?

Use our quick checklist before connecting your wallet.

Check If It's Real