People who use cryptocurrency are getting warned about phishing emails that look like they’re legitimately sent through Google accounts.
Summary
- Hackers use real Google account alerts to make crypto phishing emails appear safer than normal.
- Exchange and DeFi users face hidden links that can steal passwords, sessions or wallet access.
- crypto.news reports show phishing, AI scams and social engineering remain major crypto security risks.
This scam involves attackers sending emails that appear to be requests to update recovery contact information. These emails contain a dangerous link hidden within the details of the request.
This method is dangerous because the email appears to come from a legitimate source, making it seem more trustworthy than typical scam emails. Reports show scammers are using phrases like “recovery contact request” and “review request,” but you should always verify these requests within your own account before taking any action.
Hidden links target exchange and wallet access
Recent phishing emails use clever spacing to hide dangerous links. They make the top of the email look like a legitimate Google security alert, but the harmful link is placed further down, out of immediate sight.
The biggest threat for cryptocurrency users is someone hacking into their account. This can happen if they’re tricked into entering their password, session information, or two-factor authentication details on a fake website. If a hacker gets into an exchange account or gains control of a wallet approval, they can steal funds very quickly.
Recent reports from crypto.news highlight the importance of these warnings. Binance revealed it blocked 22.9 million scam and phishing attempts in the first quarter of 2026 – a 54% increase from the quarter before. These security measures helped safeguard approximately $1.98 billion belonging to its users.
According to crypto.news, a new Ethereum standard called ERC-7730 Clear Signing is designed to simplify how users approve transactions in their wallets. This change is happening because scams that trick people into approving malicious transactions are currently more common than direct hacks of the underlying technology.
The overall danger from online threats continues. Recently, Coinbase, Microsoft, and Europol collaborated to shut down a large phishing network called Tycoon, which used fake two-factor authentication requests. Europol estimates this network sent out tens of millions of phishing emails every month.
Users urged to verify requests manually
Google recommends checking your Google Account’s security activity directly, rather than clicking links in suspicious emails. They also suggest reviewing the devices connected to your account and enabling 2-Step Verification for better protection against unauthorized access.
Google cautions users to be wary of fake security emails that might request passwords or personal information. Instead of clicking on links within those emails, Google advises you to visit your Google Account security page directly to check your recent activity.
People who own cryptocurrency need to be careful about security, just like with any online account. Always access your exchange or wallet directly through the official app or website, and check for any security alerts there. Never type your seed phrase into any webpage. Remember, Google states they will never ask for your passwords or verification codes through email, phone calls, or messages.
Read More
- Re:Zero Season 4, Episode 6 Release Date & Time
- NTE Drift Guide (& Best Car Mods for Drifting)
- How to Get the Wunderbarrage in Totenreich (BO7 Zombies)
- How to Beat Turbines in ARC Raiders
- All Aswang Evidence & Weaknesses in Phasmophobia
- How to Get Necrolei Cyst & Strong Acid in Subnautica 2
- Alan Wake Event in Phasmophobia, Explained
- Diablo 4 Best Loot Filter Codes
- How to Craft Repair Tools in Subnautica 2
- Best Where Winds Meet Character Customization Codes
2026-05-18 14:16