Skip to content

menu

Crowell & Moring LLP logo
HomeAboutServicesContact
Search
Close

FinTalk

Home > winding up petition > Cryptocurrency Account Security

Cryptocurrency Account Security

By Crowell & Moring on February 22, 2023
Posted in Cryptocurrency

Crypto-hacking and theft have been front and center in the news. Separate from the failures and alleged fraud of CeFi crypto-exchanges, estimates suggest that $3.8 billion worth of cryptocurrencies have been stolen in the past year.  It’s become vital to understand how to proceed when these situations arise.  

Crowell & Moring has been working with clients to address such situations and has been involved in the tracking and tracing of over 30M USD of stolen cryptocurrency funds. Working with domestic and foreign law enforcement, we have investigated remote access fraud, Ponzi schemes, and numerous pig butchering scams.  Many of these frauds are cautionary tales that can ensnare highly sophisticated organizations and persons. 

As an example, last year a client, an institutional investment firm, was moving over 200 Bitcoin (“BTC”) to one of the largest cryptocurrency exchanges (the “Crypto Exchange”).  The transfer went through.  But when the client attempted to login to its Crypto Exchange account, it received a message noting that there was unusual activity, and that the account was frozen until additional KYC diligence could be performed.

The client called the telephone number provided in the message and explained to the Crypto Exchange personnel that the activity they viewed as unusual – movement of over 200 BTC – was in fact legitimate.  The Crypto Exchange explained to the client that, as an institutional investor, he should be using a “premium” account instead of a personal account, and that a premium account could save him a great deal of transfer fees.  The Crypto Exchange personnel set up the premium account with the client on the telephone and placed the over 200 BTC into that account.  An hour or so later when our client logged into his Crypto Exchange account, he was dismayed to find that all of the BTC he transferred was gone.

It turns out, the client was never on the phone with the Crypto Exchange. 

Our forensic analysis indicated that scammers registered a bogus domain name, created a bogus Crypto Exchange subdomain on that domain, and likely paid for premium search engine placement for the terms ‘the Crypto Exchange login’ to direct visitors to their fraudulent website.  Any person who landed on that site would have received the unusual activity notification with the request to contact the Crypto Exchange.

Here are the takeaways:

First, when logging into an exchange, users should bookmark the login page in their browser or directly navigate to a domain name.  Using search engines to find any crypto exchange login page could land you on a fraudulent site. 

Second, if you receive a KYC or unusual activity notification with a request to call an exchange, become immediately skeptical.  If you ever need to call any crypto exchange or service provider, use only the phone numbers on their main website.  In addition, think about how much time you usually spend on hold calling any financial institution: a dead giveaway that you may have reached a fraudster is the fact that they answer the phone immediately, ready to help. 

Third, because of the layered security that many exchanges have in place that require multifactor authentication, fraudsters will often suggest that, for support purposes, you navigate to a remote access link, such as GoToAssist or LogMeIn.  Those services will allow the fraudster direct access to your device, bypassing the security measures exchanges put in place. Legitimate technical support for crypto exchanges will never require you to download files or navigate to websites that enable remote access to your devices. 

The volume and velocity of attacks and scams targeting cryptocurrency holders is not going to subside any time soon.  Based on data we are tracking, malicious activity of this sort is on the rise and becoming more and more sophisticated, and, as with pig butchering, the fraudsters have highly sophisticated and layered schemes in place that may not be evident until a victim has lost a great deal of funds. 

If you or your firm are the victim of a theft, time is of essence, and we suggest you immediately engage specialized counsel to assist.  In subsequent posts, we will be addressing additional wallet security measures, for both hot and cold wallets.

Tags: crypto account fraud, Crypto Account Security, institutional crypto account scam
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Crowell & Moring Crowell & Moring
Read more about Crowell & Moring
Related Posts
9th Circuit Marches Forward to the Future Finding Digital Assets Are Protected Under Trademark Law
September 2, 2025
SEC’s Corporate Finance Staff Issues Statement That Meme Coins Are Not Securities
March 7, 2025
DOJ’s First “Pure” Criminal Tax Charges in Bitcoin Case Signals Heightened Focus On Tax Reporting of Digital Asset Gains
March 4, 2024

Subscribe to this blog by email

Welcome to Crowell FinTalk!

Dedicated to the ever-evolving landscape of financial services, we delve into legislation, regulatory developments, compliance challenges, and market trends. Our blog is your go-to resource for analysis and commentary on critical financial matters, helping you and your organization navigate and succeed in the complex world of finance.

Blog Authors Show/Hide

  • Crowell & Moring
  • Monique Almy
  • Robin Baillie
  • Craig Barrett
  • Lauren Blaber
  • Samuel C. Blackington
  • Peter Broadhurst
  • Caroline Brown
  • William J. Bruno
  • Kevin Cacabelos
  • John A. Clark
  • Jenny Creamer
  • Nellica Ducreay
  • Alexis
  • Lex Eley
  • Joe Flynn
  • Hadeel Ghaida
  • Danielle Giffuni
  • Edward Goetz
  • Jennifer Grady
  • Carlton Greene
  • Mirenda Gwin
  • Randall Hagen
  • Jeffrey Handelman
  • Paul B. Haskel
  • Aileen Hinsch
  • Richard B. Holbrook, Jr.
  • Frederick (Rick) Hyman
  • Frank P. Jaklitsch
  • Dounia Jones
  • Jennifer Kafcas
  • Thomas Koegel
  • Dan Krall
  • Scott Lessne
  • Starling Marshall
  • Andrew Martin
  • Chris Murphy
  • Paul Muscutt
  • Helen Ogunyanwo
  • James J. Ohlig
  • Justin Porter
  • Kevin Rubinstein
  • RP Sagner
  • Jackie Schaeffer
  • Anand Sithian
  • David Stepp
  • Ruta Trivedi
  • Alvino Van Schalkwyk
  • Charles Wakiwaka
  • Robert J. Waldner
  • Bethany Warner
  • Robert Weekes
  • Cathryn Williams
  • Lynette Williams
  • Erik Woodhouse
  • Daniel L. Zelenko

Stay Connected

RSS Twitter LinkedIn

Subscribe to this blog

Topics

  • Asset-Based Lending
  • Cryptocurrency
  • Finance
  • Financial Services
  • Litigation
  • Litigation Finance
  • Regulatory
  • Restructuring

Archives

Recent Updates

  • Treasury Continues Focus on Cartels: Understanding FinCEN’s Latest Action Restricting Transactions with Certain Mexico-Based Gambling Establishments
  • Bob Waldner Publishes Article in The Review of Banking & Financial Services
  • FinCEN and Banking Regulators Issue New FAQs on Suspicious Activity Reports
  • Use of Field Exams and QOE Reports to Safeguard Lenders in Risky Times
  • Investors Anticipate Supreme Court Arguments on Trump’s Tariff Powers

About this blog

Read More....

Crowell & Moring Blogs

  • C&M Health Law
  • C&M Restructuring Matters
  • Data Law Insights
  • Government Contracts Legal Forum
  • International Trade Law
  • Retail & Consumer Products Law Observer
  • State AG Blog
  • Trade Secrets Trends

FinTalk

RSS Twitter LinkedIn
Crowell & Moring LLP logo
DisclaimerPrivacy Policy
Copyright © 2025, Crowell & Moring LLP. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo

By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts.

Accept All CookiesReject Nonessential Cookies