Watch out for "Airdrop Tokens / Reward Tokens" that are sent to
your wallet.
The URL link in the token will lead you to a website
that will send many tokens from your wallet to the creator of the scam website when
you sign the transaction.
You can go to
pool.pm and enter the assetname and see if they have marked
it as "SCAM".
e.g.
https://pool.pm/asset18vykxgx7yk5usjpwhegqlp9zjda92wcr93rhnl.
Noting that even if it is not marked as "SCAM", does
not mean it is not a scam.
Also checkout the blacklist of SCAM Tokens, Policy IDs, Websites etc listed under
"Blacklists" above.
Blacklists data by CardanoShield
You can also find a projects website URL at
CardanoCube.io
If you want to get them out of your wallet, then
you can send them to
$sendscams or
$scamexamples (epochsec uses them for education).
Look out for deep-fake GenerativeAI based Videos!
Again, apply the rule: if it's too good
to be true, it probably isn't!
Look out for social media impersonation.
Check the date when the account was created, the
number of followers and look closely at the handle, they will typically change one
character.
Be very careful who you trust.
Always independently verify who they say they are.
Never share your wallets seed-phrase with anyone!
Check the transaction you are sending from your wallet before
sending/signing the
transaction!
Consider creating a wallet that you use as your transactional (hot)
wallet.
i.e. have a main (cold) wallet and then send only the
assets you plan to use with the website/app to the transactional (hot) wallet. Once
you've finished interacting with the website/app using your transactional (hot)
wallet, send assets back to your main (cold) wallet.
On social networks block the term "Airdrop".
i.e. if using X set up a "Muted words"
Look out for job offers where they ask you to download and run a
file - no matter how good the website looks.