By Key Points
- Over $5.2 million stolen from crypto users in April 2025
- Victim count surged by 26% to 7,565 users
- Hackers used advanced tactics like address poisoning
- Experts call for stronger user education and security tools
Crypto phishing scams cost the community over $5.2 million in April 2025, targeting more than 7,000 users. According to blockchain security firm Scam Sniffer, attackers used advanced techniques like address poisoning and phishing signatures, tricking users into approving fraudulent transactions.
While the stolen amount was 17% lower than March’s $6.37 million losses, the number of victims increased sharply, up by 26% compared to the previous month. A total of 7,565 individuals were affected.
🚨 ScamSniffer April 2025 Phishing Report
April losses: $5.29M | 7,565 victims
VS March: -17% in losses | +26% in victimsKey insight: Notable spike in victim count despite lower total losses. Largest attack netted $1.43M via phishing, followed by $700K from address poisoning… pic.twitter.com/mJbGgGyGrN
— Scam Sniffer | Web3 Anti-Scam (@realScamSniffer) May 3, 2025
One of the biggest thefts involved a phishing signature attack that drained $1.4 million from a single user. The victim unknowingly approved fake requests, allowing attackers to take control of their wallet. These scams manipulate users into signing digital approvals without fully understanding what they’re authorizing.
In another major case, a user lost $700,000 after falling for an address spoofing tactic known as address poisoning. Here, hackers created a fake wallet address closely resembling one the victim had previously used. Unsuspecting, the user sent funds directly to the attacker’s wallet.
Crypto Phishing Scams in April. Source: Scam Sniffer – Techtoken
These sophisticated tactics mirror concerns raised in broader crypto discussions, such as the Ethereum simplification efforts aimed at making blockchain interactions safer and more user-friendly.
Hackers Turn to AI and Social Engineering
Crypto phishing scams are evolving quickly. Yu Xian, founder of blockchain security firm SlowMist, revealed that attackers are now targeting users through social media platforms like Telegram. Scammers use AI-generated voice messages and customized chats to trick victims.
In one case, hackers hijacked a Telegram account and sent fake voice clips mimicking a victim’s trusted contact. These voice clips were likely produced using AI tools trained on previous voice recordings.
“Don’t trust just one source. When it involves money, always verify through another reliable channel,” warned Xian.
This method echoes a high-profile case where a U.S. citizen lost 3,520 BTC (worth over $330 million) to a complex social engineering scam, which ZachXBT and other blockchain security teams investigated.
source – Cos(余弦) – Techtoken
Fortunately, blockchain investigators, including ZachXBT and Binance’s security team, successfully froze around $7 million connected to April’s thefts.
CertiK, another leading blockchain security firm, reported that the broader crypto industry suffered $364 million in total losses from hacks, scams, and exploits during April. Around $18.2 million has since been recovered.
These alarming figures emphasize the increasing sophistication of crypto phishing scams. Experts are now urging the industry to invest in better user education, improved wallet security features, and advanced anti-phishing tools to protect users from ever-evolving threats.
Industry Response and Growing Security Awareness
The rise in phishing scams comes at a time when the crypto sector is seeing both increased adoption and regulatory scrutiny. Major developments, such as the Arizona Bitcoin reserve initiative, highlight how governments and institutions are becoming more involved with crypto assets.
At the same time, the ongoing Bitcoin price surge continues to attract new investors, many of whom may not be fully aware of the sophisticated phishing tactics used by cybercriminals.
Market rumors, such as the recent Ripple Circle buyout, also tend to fuel speculative activity, drawing in fresh capital—and unfortunately, new targets for scammers.
As more people enter the crypto space, security education and robust anti-phishing solutions are more critical than ever. Industry leaders are calling for wallet improvements that can detect suspicious transactions and provide clearer warnings to users before they approve any potentially harmful actions.
What's your reaction?
