Digital Security: Do Not Let GREED Be Your Downfall

By Crypto Safety First | 5-minute digital safety power-ups | 25 Mar 2023

We have received an email stating that we have received a considerable amount of Bitcoin.

At the current BTC price, around 28K USD, this is a life-changing amount of money. We need to act quickly!

9981f1ab889d1915f262bfd294dba957a17e00b1d7f7a9d3c59b75a17b42240e.png

Greed, the Path Towards Financial Downfall

Anyone who has received this email must consider the email address as compromised and prone to receive more phishing attacks.

The scammers already have the email address and now they need more information. And they are going to use greed to get it.

The first step is getting you to navigate to the phishing website, using GREED as a hook: Your portfolio has been credited with 65.8BTC

01b4f5d2fe0a9ccf66d823bed795be2ea2509dbaf55a484f195e1afdfcede0f2.png

Once we have navigated to the website, they will try to get more valuable information from us.

In this case, they are asking us to change the password.

First, we tried to input a simple password '123456789' but they didn't let us use a simple password and prompted us to 'Please a more secure password'.

They are trying to get the password that we use for your other accounts. A password that we may consider secure, and hopefully (for them) a password that we reuse in all our accounts.

To move forward, to be able to show you more about this scam, we proceeded to enter a more complex password '147258369!!!' and that took us to the next step.

7ee54d8458779dab83f1afee98468b0b48f23c856ad08ddc546ae0ac6dac0d1d.png

Which was to ask for our telephone number.

So, they already have our email address, and a password that we reuse for many accounts, and also now we are going to give away our telephone number.

6d4200c5a9c811a003ea62f41d88c404834ee04fc28fa9944c38f22fab0899d4.png

At this stage, we didn't progress any further, because of course we don't want to give away any of our telephone numbers.

In the hands of professional hackers, all the information that the scammers are asking for can make much harm. For example:

  1. Access online accounts: With the email address and password, the hacker could attempt to log into the victim's various online accounts, such as social media, email, or banking accounts. If the victim has used the same password across multiple accounts, the hacker could gain access to all of them.

  2. Conduct phishing attacks: The hacker could use the victim's email address and phone number to send phishing emails or text messages, posing as a legitimate company or individual to trick the victim into revealing sensitive information or clicking on malicious links.

  3. Sell the information: The hacker could sell the victim's email address, password, and telephone number on the dark web or to other malicious actors for profit.

  4. Install malware: The hacker could use the victim's email address to send malware-infected attachments or links, which could allow them to gain further access to the victim's device or steal sensitive information.

  5. Impersonate the victim: The hacker could use the victim's email address and phone number to impersonate them and make fraudulent purchases, apply for loans or credit cards, or commit other crimes.

For someone who has no knowledge about phishing, completing all the steps requested by the scammer will lead to a very dangerous situation.

Not everyone is knowledgeable enough to identify the scam, but you are and you can do something about it.

How to Report a Phishing Website

If you come across a phishing website, please take some minutes to report it.

If you are reading this post, there is a good chance that your digital security and safety awareness is high, but not everybody may be as knowledgeable as you.

You may be making a big favor to someone and for that, we are thanking you in advance.

https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en

11a37d37259936282f0828b307c31417a1d0da99e485d3ec000d5931d2f91588.png

Social Engineering Techniques

Here are some social engineering techniques that phishing attacks use and everybody should be aware of:

  1. Deception: Phishing attacks use deception to trick users into divulging sensitive information, such as login credentials or personal information. This can be done by using fake websites or emails that appear to be from a legitimate source.

  2. Urgency: Phishing attacks often create a sense of urgency or emergency to pressure users into acting quickly without thinking things through. Urgent messages may claim that a user's account has been compromised or that they need to update their information immediately to avoid negative consequences.

  3. Authority: Phishing attacks may also use a sense of authority to convince users to comply with their requests. They may use the logos or branding of well-known companies or organizations to make their requests seem more legitimate.

  4. Personalization: Phishing attacks may also use personalization to make their messages appear more genuine. They may use the user's name or other personal information to create a sense of familiarity.

  5. Fear and Intimidation: Phishing attacks may also use fear or intimidation tactics to coerce users into taking action. For example, they may threaten legal action or other negative consequences if the user does not comply with their requests.

  6. Greed: Phishing attacks may appeal to users' greed by promising financial rewards or other incentives in exchange for their personal information or cooperation.

  7. Familiarity: Phishing attacks may also create a sense of familiarity by imitating the language, tone, or style of communication used by legitimate companies or individuals that the user interacts with regularly.

Always Use Unique and Stong Passwords, and Two-Factor Authentication

Using strong passwords will protect your account from brute force attacks, but only unique passwords will protect your accounts from a compromised passwords.

Even the best drivers need to wear a safety belt because accidents happen. Consider that this is the same situation with passwords, because even the most digital security-savvy people can have a password compromised at some point or another.

https://cryptosafetyfirst.com/unique-strong-passwords/

2b81bff5e85bffeae9cf23ed97ab1b70b436d7394b6a36f98ae263bf75cff0c4.png

And consider using 2FA or MFA as an additional security measure that will protect your accounts from hacks.

  • Something you know plus
  • Something you have and/or
  • Something you are

https://cryptosafetyfirst.com/two-factor-authentication/

77950be9916a4749a9fc962c35d8d1c30744e966c8dca7d92854ead166d5debe.png

We hope that you have learned something new that has boosted your digital security awareness.

Thanks for your time and Stay Safe.

Resources

  1. https://cryptosafetyfirst.com/
Bitcoin (BTC) BTC

How do you rate this article?

14
Crypto Safety First
Crypto Safety First

5-minute digital safety power-ups
5-minute digital safety power-ups

Valuable digital safety knowledge and good practices in short but informative articles. Protect your most valuable crypto and digital assets from hacks, scams, and accidents.

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
DeFi for Absolute Beginners: A 4-Step Visual Blueprint to Earning Your First Decentralized Yield DeFi for Absolute Beginners: A 4-Step Visual Blueprint to Earning Your First Decentralized Yield
Joshua shema

Joshua shema

9 hours ago
5 minute read

The Deathblow Has Finally Been Dealt to Bitcoin? The Deathblow Has Finally Been Dealt to Bitcoin?
johnwege

johnwege

21 hours ago
5 minute read

Publish0x Companion App Just Out on Google Play! Publish0x Companion App Just Out on Google Play!
Publish0x PRs

Publish0x PRs

17 Jun 2026
1 minute read