Skip to content

menu

Crowell & Moring LLP logo
HomeOur Team
Search
Close

Crypto Digest

Insight and Commentary on Investing in Digital Assets

Home > cryptocurrency > Cryptocurrency Account Security

Cryptocurrency Account Security

By Richard J. Lee & Crowell & Moring on February 22, 2023
Posted in cryptocurrency

Crypto-hacking and theft have been front and center in the news. Separate from the failures and alleged fraud of CeFi crypto-exchanges, estimates suggest that $3.8 billion worth of cryptocurrencies have been stolen in the past year.  It’s become vital to understand how to proceed when these situations arise.  

Crowell & Moring has been working with clients to address such situations and has been involved in the tracking and tracing of over 30M USD of stolen cryptocurrency funds. Working with domestic and foreign law enforcement, we have investigated remote access fraud, Ponzi schemes, and numerous pig butchering scams.  Many of these frauds are cautionary tales that can ensnare highly sophisticated organizations and persons. 

As an example, last year a client, an institutional investment firm, was moving over 200 Bitcoin (“BTC”) to one of the largest cryptocurrency exchanges (the “Crypto Exchange”).  The transfer went through.  But when the client attempted to login to its Crypto Exchange account, it received a message noting that there was unusual activity, and that the account was frozen until additional KYC diligence could be performed.

The client called the telephone number provided in the message and explained to the Crypto Exchange personnel that the activity they viewed as unusual – movement of over 200 BTC – was in fact legitimate.  The Crypto Exchange explained to the client that, as an institutional investor, he should be using a “premium” account instead of a personal account, and that a premium account could save him a great deal of transfer fees.  The Crypto Exchange personnel set up the premium account with the client on the telephone and placed the over 200 BTC into that account.  An hour or so later when our client logged into his Crypto Exchange account, he was dismayed to find that all of the BTC he transferred was gone.

It turns out, the client was never on the phone with the Crypto Exchange. 

Our forensic analysis indicated that scammers registered a bogus domain name, created a bogus Crypto Exchange subdomain on that domain, and likely paid for premium search engine placement for the terms ‘the Crypto Exchange login’ to direct visitors to their fraudulent website.  Any person who landed on that site would have received the unusual activity notification with the request to contact the Crypto Exchange.

Here are the takeaways:

First, when logging into an exchange, users should bookmark the login page in their browser or directly navigate to a domain name.  Using search engines to find any crypto exchange login page could land you on a fraudulent site. 

Second, if you receive a KYC or unusual activity notification with a request to call an exchange, become immediately skeptical.  If you ever need to call any crypto exchange or service provider, use only the phone numbers on their main website.  In addition, think about how much time you usually spend on hold calling any financial institution: a dead giveaway that you may have reached a fraudster is the fact that they answer the phone immediately, ready to help. 

Third, because of the layered security that many exchanges have in place that require multifactor authentication, fraudsters will often suggest that, for support purposes, you navigate to a remote access link, such as GoToAssist or LogMeIn.  Those services will allow the fraudster direct access to your device, bypassing the security measures exchanges put in place. Legitimate technical support for crypto exchanges will never require you to download files or navigate to websites that enable remote access to your devices. 

The volume and velocity of attacks and scams targeting cryptocurrency holders is not going to subside any time soon.  Based on data we are tracking, malicious activity of this sort is on the rise and becoming more and more sophisticated, and, as with pig butchering, the fraudsters have highly sophisticated and layered schemes in place that may not be evident until a victim has lost a great deal of funds. 

If you or your firm are the victim of a theft, time is of essence, and we suggest you immediately engage specialized counsel to assist.  In subsequent posts, we will be addressing additional wallet security measures, for both hot and cold wallets.

Tags: crypto account fraud, Crypto Account Security, institutional crypto account scam
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Richard J. Lee Richard J. Lee

Richard J. Lee is a partner in the New York office of Crowell & Moring. He focuses on derivatives, finance, and distressed debt and claims trading. Richard is a CFA® charter holder. He has extensive experience advising investors and lenders in a wide…

Richard J. Lee is a partner in the New York office of Crowell & Moring. He focuses on derivatives, finance, and distressed debt and claims trading. Richard is a CFA® charter holder. He has extensive experience advising investors and lenders in a wide range of alternative credit investments and structured financing transactions.

Read more about Richard J. Lee
Show more Show less
Related Posts
SEC’s Corporate Finance Staff Issues Statement That Meme Coins Are Not Securities
March 7, 2025
DOJ’s First “Pure” Criminal Tax Charges in Bitcoin Case Signals Heightened Focus On Tax Reporting of Digital Asset Gains
March 4, 2024
The Storm Continues:  Federal Court Upholds Tornado Cash Sanctions and DOJ Files Criminal Charges Against Two Tornado Cash Cofounders
September 1, 2023

Subscribe to this blog by email

Blog Authors Show/Hide

  • Crowell & Moring
  • Craig Barrett
  • Lauren Blaber
  • Samuel C. Blackington
  • Peter Broadhurst
  • Caroline Brown
  • William J. Bruno
  • Kevin Cacabelos
  • John A. Clark
  • Nellica Ducreay
  • Lex Eley
  • Hadeel Ghaida
  • Danielle Giffuni
  • Jennifer Grady
  • Carlton Greene
  • Richard B. Holbrook, Jr.
  • Frederick (Rick) Hyman
  • Jennifer Kafcas
  • Richard J. Lee
  • Scott Lessne
  • Nataly Lopez
  • Starling Marshall
  • Christopher Mendez
  • Chris Murphy
  • Justin Porter
  • Matthew Repetto
  • Kevin Rubinstein
  • Anand Sithian
  • Donta Smith
  • Alvino Van Schalkwyk
  • Charles Wakiwaka
  • Lynette Williams
  • Daniel L. Zelenko

Stay Connected

LinkedIn RSS Twitter

Subscribe to this blog

Topics

  • Bankruptcy
  • cryptocurrency
  • Derivatives
  • Digital Assets
  • Interview
  • Uncategorized

Archives

Recent Updates

  • SEC’s Corporate Finance Staff Issues Statement That Meme Coins Are Not Securities
  • DOJ’s First “Pure” Criminal Tax Charges in Bitcoin Case Signals Heightened Focus On Tax Reporting of Digital Asset Gains
  • The Storm Continues:  Federal Court Upholds Tornado Cash Sanctions and DOJ Files Criminal Charges Against Two Tornado Cash Cofounders
  • ISDA publishes whitepaper on digital asset custody
  • Bittrex: Regulatory Enforcement and Macroeconomic Headwinds Lead to Another Crypto Bankruptcy

Crowell & Moring Blogs

  • C&M Health Law
  • C&M Restructuring Matters
  • Data Law Insights
  • Government Contracts Legal Forum
  • International Trade Law
  • Retail & Consumer Products Law Observer
  • State AG Blog
  • Trade Secrets Trends

Crypto Digest

LinkedIn RSS Twitter C&M Health Law Government Contracts Legal Forum International Trade Law Retail & Consumer Products Law Observer State AG Blog Trade Secrets Trends C&M Restructuring Matters Data Law Insights
Crowell & Moring LLP logo
Copyright © 2025, Crowell & Moring LLP. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo

By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts.

Accept All CookiesReject Nonessential Cookies