Understanding the types of crypto scams in operation today — their mechanics, their targets, and their warning signs — is essential protection for anyone in the crypto space. Quick Answer: The most common crypto scams in 2026 fall into six categories: pig butchering (romance-investment), fake exchanges and platforms, rug pulls, pump-and-dump schemes, phishing attacks, and recovery scams targeting people who were already defrauded. Understanding how each operates is the first step to avoiding them — and to understanding what happened if you’ve already been victimized.
Crypto scam types: Why Taxonomy Matters for Victims
This guide covers everything about crypto scam types so you can make informed decisions. Knowing which type of scam you encountered isn’t just academic. It determines what evidence matters, which agencies to report to, what tracing methods are applicable, and what (limited) realistic recovery options exist. This pillar page maps the full landscape. Follow the links to dedicated articles on each scam type for deeper investigation.
Type 1: Pig Butchering Scams (Sha Zhu Pan)
Pig butchering is the dominant crypto fraud method globally by volume of losses. The name comes from the Chinese criminal slang — victims are “fattened” (cultivated through weeks or months of trust-building) before being “slaughtered” (drained of their money at the critical moment).
The pattern: an unsolicited contact (WhatsApp, dating app, LinkedIn, social media) leads to a developing friendship or romance, which then naturally progresses to the “helper” sharing their crypto investment success, introducing the victim to a fraudulent platform that shows artificial gains, and eventually requesting larger and larger deposits until the victim tries to withdraw — at which point they discover the platform is fake and all “gains” were fictional.
Pig butchering operations are typically run by organized criminal groups, often using trafficked workers in Southeast Asia. Individual scammer accounts are frequently operated by victims of human trafficking themselves. Losses in the US alone are estimated in the billions annually.
Type 2: Fake Exchange & Trading Platform Scams
Fraudulent exchanges mimic legitimate platforms with professional-looking interfaces, fake trading dashboards, and fabricated customer service. Victims deposit real cryptocurrency, which immediately moves to scammer wallets. The platform shows a fictional balance that can be “traded” and appears to grow — until withdrawal is attempted, at which point fees, taxes, or verification requirements are invented to extract more money before the platform disappears entirely.
Key identifiers: the platform isn’t listed on CoinGecko or CoinMarketCap, the domain is recently registered, withdrawal requests trigger escalating fee demands, and there is no verifiable regulatory registration.
Type 3: Rug Pulls
A rug pull is a DeFi (decentralized finance) or token project fraud where developers create a token or protocol, generate artificial hype and liquidity, attract investor capital, and then abruptly withdraw all liquidity and disappear — leaving token holders with worthless assets and no recourse.
Rug pulls range from “soft” (gradual exit, abandoning the project) to “hard” (sudden total liquidity removal). They exploit the pseudonymous nature of DeFi, where no KYC is required and smart contracts can contain hidden backdoors. Tell-tale signs: anonymous teams, no smart contract audit, locked liquidity set to expire, and suspicious token distribution (whales holding large percentages).
Type 4: Pump-and-Dump Schemes
Pump-and-dump schemes involve coordinated artificial inflation of a cryptocurrency’s price through false hype (social media, Telegram groups, paid influencer promotions), followed by coordinated selling by the organizers at the peak — leaving late buyers with rapidly depreciating assets.
This is illegal securities fraud under US law when it involves securities, and is also addressed under wire fraud statutes. The organizers buy large positions early, orchestrate the pump, profit enormously from the dump, and often repeat the cycle with new tokens.
Type 5: Phishing & Account Takeover
Crypto phishing attacks target exchange account credentials, wallet seed phrases, and private keys through fake websites, fake support contacts, malicious browser extensions, and social engineering. Unlike investment scams, these are typically fast — the attacker gains access and empties the wallet or account immediately.
Common vectors: fake exchange login pages (delivered via search ads or email), fake MetaMask popup extensions, “support agents” in Discord or Telegram requesting seed phrases, and QR codes that pre-fill malicious transaction data.
Type 6: Recovery Scams (Secondary Fraud)
Recovery scams specifically target people who have already been defrauded — hence the name “secondary scam.” Scammers monitor fraud reports, forum posts, and victim support groups to identify recent victims, then approach them claiming to be recovery specialists, government agents, or legal services that can retrieve lost funds for an upfront fee.
This is particularly insidious because victims are already in a vulnerable state and are actively seeking help. The secondary loss often matches or exceeds the original loss. We cover this category in detail throughout this site because it is both extremely common and systematically underestimated by victims who don’t realize their “recovery company” is itself a scam.
Emerging Patterns in 2026
AI-generated deepfakes: Scammers use AI-generated video and voice to impersonate celebrities endorsing investment platforms, or to create convincing video calls with “relationship” targets in pig butchering operations.
Government impersonation: Fraudsters pose as IRS agents, SEC investigators, or Interpol officers claiming the victim’s assets have been “frozen” and require a fee to unfreeze — a variant combining authority impersonation with crypto payment demands.
Crypto ATM fraud: Targeting elderly victims in particular, scammers instruct victims to deposit cash at crypto ATMs to “protect” their accounts or pay fictitious fees — one of the fastest-growing fraud vectors by reported losses.
What to Do After Identifying the Scam Type
Report to the relevant agencies based on scam type: IC3 (FBI’s Internet Crime Complaint Center) for all internet-based fraud; FTC (reportfraud.ftc.gov) for consumer fraud; CFTC if commodities/futures were involved; SEC if securities were involved. Preserve all evidence before reporting: screenshots, transaction hashes, wallet addresses, communication records, and platform URLs. The blockchain transaction record is permanent and may support law enforcement investigations even when monetary recovery isn’t possible.
Frequently Asked Questions
Which crypto scam type causes the most total losses?
By total dollar value, pig butchering (romance-investment) scams consistently rank first, generating billions annually in the US alone according to FBI IC3 reports. The extended trust-building period leads victims to invest far more than they would in a one-time fraud scenario.
Can you tell you’re on a fake exchange before you try to withdraw?
Often yes — look for a domain registered within the past year, no listing on CoinGecko or CoinMarketCap, no verifiable regulatory status, unavailable or AI-generated customer support, and spreads or trading fees that seem unusually favorable. Fake platforms often show unrealistically consistent gains.
Are rug pulls always intentional fraud from the start?
Not always. Some projects start with genuine intent and exit-scam when they fail to achieve traction. Others are fraudulent from inception with no intention of delivering. From a victim’s perspective, the practical distinction matters less than the outcome — both result in total loss — but intent matters for criminal prosecution.
For official reporting, visit the FTC scam reporting center or the FBI Internet Crime Complaint Center (IC3).
