SCAM ALERTS |
Pig butchering scams active in Australia HIGH ALERT Fake investment platforms targeting Australians ONGOING Check any suspicious message instantly at scamshieldai.com.au Pig butchering scams active in Australia HIGH ALERT Fake investment platforms targeting Australians ONGOING Check any suspicious message instantly at scamshieldai.com.au
← Back to Scam Alerts
Back to Scam Alerts
Crypto March 18, 2026 · By ScamShield AI

Top Crypto Scams Circulating This Week — March 18, 2026

This week our scam detection system flagged a surge in fake presale tokens and wallet drainer links across Telegram and social media. Here are the top patterns to watch out for.

1. Fake Presale Tokens

Scammers are creating tokens that mimic upcoming legitimate presales — complete with fake countdown timers, copied whitepapers, and cloned websites. They promote these on Telegram and X (Twitter), often with fake influencer endorsements or AI-generated hype posts. Once enough people send funds to the "presale wallet," the scammers disappear and the token never launches.

How to spot it:

  • The presale website was registered within the past few weeks
  • No verifiable team identity — anonymous devs with no LinkedIn or GitHub presence
  • Smart contract not yet audited or audit is from an unknown/paid firm
  • Pressure tactics: "Only 48 hours left!" or "99% sold — last chance!"
  • Funds go directly to an EOA wallet rather than a vesting/escrow contract

2. Wallet Drainer Links

Wallet drainer attacks are increasing sharply. The attack is simple: a user connects their wallet to a malicious site disguised as a legitimate DEX, NFT mint, airdrop claim, or token approval page. A hidden contract is then called that approves unlimited token spending — draining the wallet silently in seconds.

This week we observed drainer links being distributed via fake Uniswap "fee refund" emails, fake Solana airdrop bots on Telegram, and sponsored posts on Instagram mimicking Coinbase and Binance.

How to spot it:

  • URL doesn't match the official domain — look for extra hyphens, swapped letters, or .xyz / .io variants
  • Site asks you to "approve" a transaction before you've done anything
  • The contract being called isn't the official project contract
  • Promoted via DM, unsolicited email, or paid social ads — legitimate airdrops are announced on official channels first
  • Always check token approvals at revoke.cash after any suspicious interaction

3. Impersonation Scams

Impersonation remains the most common crypto scam vector. This week's surge involves scammers posing as Binance support staff, Coinbase compliance officers, and well-known crypto influencers in Telegram DMs and Discord servers. The script is familiar: "Your account has suspicious activity — verify your seed phrase immediately to avoid being locked out."

A newer variant targets presale investors specifically: after you send funds to a real presale, a fake "project team" member contacts you claiming there was a wallet error and asks you to re-submit to a different address.

How to spot it:

  • No legitimate exchange, project, or influencer will ever ask for your seed phrase or private key
  • Verify any DM by checking the sender's username against the official website — scammers use near-identical handles
  • Be suspicious of anyone who contacts you after you've interacted with a project — this info can come from on-chain data
  • If a "support agent" asks you to install software or share your screen, hang up immediately

Think you've spotted a scam?

Check it instantly with ScamShield AI — free, no sign-up needed.

Open ScamShield AI on Telegram