Phishing Scam Disguised as a Security Alert
One evening, I received an email from what appeared to be my crypto exchange, SafeTrade, warning me about “suspicious login attempts” on my account. The email looked professional, featuring the exchange’s logo, branding, and a link to secure my account. Concerned, I clicked the link, which directed me to a login page identical to SafeTrade’s official website.

The page prompted me to log in and reset my password. I entered my credentials and followed the instructions to change my password. The page even displayed a confirmation message, assuring me my account was now secure. Relieved, I closed the browser and went to bed.

The next morning, I logged into my account directly from the official app, only to find my entire balance—nearly $12,000 worth of Bitcoin and Ethereum—had been transferred to an unknown address overnight. In shock, I contacted SafeTrade’s support team, only to learn that they had not sent the email. It was a phishing scam.

The scammers had replicated SafeTrade’s branding and created a fake website to capture my login credentials. Once they had access to my account, they drained it immediately. Despite reporting the theft, the funds were irretrievable.

This experience was a painful lesson to never trust unsolicited emails or links, even if they appear legitimate. Always access your account directly through the official app or website. Enable two-factor authentication (2FA) for added security, and never ignore small details like slightly altered email addresses or URLs—they’re often the first clues of a phishing attempt.