Lost your crypto access code? Be wary, there‘s a scam for that too

Fraudsters are exploiting cryptocurrency owners who have forgotten their wallet access codes by offering fake recovery tools that secretly harvest personal data, according to findings from the HP Security Lab [1]. The scam targets individuals who can no longer recall the 12- to 24-word seed phrase required to unlock their digital wallets [1]. Alex Holland of the HP Security Lab said, “Scammers are preying on people’s desperation to recover their cryptocurrency wallets” [1]. A seed phrase functions as a master key generated by a wallet, which itself stores the cryptographic keys needed to access assets held on a blockchain [2]. When a victim searches online for help, they may encounter websites promoting free recovery software. “If you wanted a way of recovering that, you could search ‘free cryptocurrency recovery tool’, which I did, and lo and behold one of these fake malware-laden tools came up in my search results,” Holland said [1]. Once installed, the malicious program collects passwords stored in web browsers, documents, photographs, and other sensitive files [1]. The stolen information is compressed into a Zip file and transmitted to criminals, who can use it to commit further fraud [1]. One application identified by researchers was called “Lost crypto wallets finder – cryptocurrency recovery toolkit” and claimed to help users “reclaim their assets and don’t lose access to their digital wealth” [1]. The hosting site for that software has since been taken offline [1]. The operation preys on panic. “They’re preying on emotions. They want to take advantage of that moment of vulnerability,” Holland said [1]. The tactic mirrors the structure of advance-fee fraud, in which a victim is promised a large return in exchange for an upfront action that ultimately leads to a loss [3]. The Federal Bureau of Investigation notes that such schemes occur when a victim pays money or provides something of value “in anticipation of receiving something of greater value” and then receives little or nothing in return [3]. Cryptocurrencies are digital assets secured through blockchain technology and are treated variously as commodities, securities, or currencies depending on the jurisdiction [2]. Their irreversible transaction design means that losing a seed phrase can permanently lock away holdings, creating the urgency that scammers exploit. Security researchers recommend that anyone who suspects they have downloaded fraudulent software should remove it using a reputable antivirus tool and immediately reset all passwords, beginning with banking credentials [1]. Legitimate seed-phrase recovery services do exist, but users should consult independent online reviews before trusting any tool [1].