Watch Out: Crypto Users Under Attack via Google Forms!
In a brand new twist on digital scams, Kaspersky researchers have uncovered a cunning scheme that exploits Google Forms to deceive cryptocurrency enthusiasts. Here’s the deal: scammers, armed together with your email address, send out a fraudulent email that appears to be a legitimate notification from a cryptocurrency exchange. This email invites you to say a supposed crypto transfer by clicking a link.
The Scam Unraveled
Once you click the link, you are directed to an internet site posing as a crypto transaction service. Here’s where it gets shady—you are instructed to achieve out to “blockchain support” and pay a so-called “commission” in crypto to get your funds. Spoiler alert: there aren’t any funds, and you find yourself losing your money.
How They Do It
The scammers use Google Forms, a free survey tool, to create a straightforward form with only one field: your email address. They fill in your email themselves, and Google Forms sends you a confirmation message. This email is cleverly designed to mimic an actual notification from a crypto service, complete with a catchy claim that your payout will expire soon when you don’t act fast.
A scam email sent via Google Forms
The email cleverly includes familiar Google Forms elements, like the emblem and a link to the shape you never filled out. The goal? To sneak past spam filters, due to Google’s legitimate address, and to catch your eye with a tempting headline.
Expert Advice
As Andrey Kovtun, Email Threats Protection Group Manager at Kaspersky, explains, “This campaign shows how fraudsters exploit trusted platforms to scam crypto users. They craft fake emails that look like genuine crypto exchange notifications, using the platform’s credibility and the victim’s unfamiliarity to trick them into giving away wallet credentials.” The takeaway? Always confirm the source of emails, double-check links, and bolster your security setup to safeguard your digital assets.
After clicking the link, users are directed to a scam website mimicking a crypto transaction platform.
The user is prompted to pay a commission fee in crypto to receive the promised transaction.
How to Stay Safe
- Avoid clicking on links in unexpected messages.
- Be alert for unusual elements in emails, especially those related to Google Forms.
- Install a trustworthy security solution to dam access to scam web sites.
Published On Jul 26, 2025 at 09:01 AM IST
Stay Informed with Our Community
Join over 2 million industry professionals. Subscribe to our newsletter and get the most recent insights and evaluation delivered straight to your inbox.
All About the ETCISO Industry on Your Smartphone!
Image Credit: ciso.economictimes.indiatimes.com
