NFT scams: how to identify and avoid wallet drains
Most NFT scams do not begin with someone “hacking” a wallet in the cinematic sense.

They begin with a transaction that looks ordinary enough: a mint confirmation, an airdrop claim, a marketplace listing, a token-gated Discord verification, perhaps a message promising that an old collection suddenly has utility again. The collector connects a wallet, signs what appears to be a routine request, and discovers later that the wallet itself was never breached—but its assets have been given away through an authorization.
That distinction matters. A wallet drainer does not generally need our seed phrase or private key. It needs us to approve the right permission, or sign the right structured message, at the wrong moment. For NFT holders, whose assets often carry provenance, community access, and cultural value that exceed their last sale price, this is one of the most damaging forms of risk in the market.
Phishing losses attributed to wallet drainers fell sharply in 2025, to about $83.85 million from $494 million in 2024—an 83% decline. Victim counts also dropped from roughly 332,000 to 106,106. That is meaningful progress, not a reason for complacency. A single successful drainer can still remove a carefully assembled wallet in minutes, and the largest theft reported in 2025 was still worth $6.5 million.
The most dangerous NFT scam is often not the one that asks for your secret phrase. It is the one that asks for a permission you have learned to click through.
The mechanics of wallet drainers: approval is the asset pathway
An NFT wallet drainer is a malicious website, script, or smart-contract flow designed to obtain permissions that let an attacker move assets later. The blockchain continues to work exactly as designed; the weak point is the social and interface layer surrounding the signature.
For Ethereum NFTs, the pivotal function is often setApprovalForAll. ERC-721 and ERC-1155 standards use this approval model so that marketplaces and trading protocols can transfer tokens when a user lists, sells, lends, or otherwise interacts with an application. It is a practical mechanism. Without it, marketplace activity would be far more cumbersome.
But setApprovalForAll can be dangerously broad. Rather than approving one NFT for one transfer, the wallet owner may authorize an operator to move all NFTs from a given collection contract. If that operator is controlled by a scammer, the attacker can transfer eligible assets out of the wallet without another confirmation from the owner.
For fungible tokens, drainers commonly lean on token allowances or Permit2, a widely used authorization standard associated with token-swapping workflows. Permit2 can make approvals more flexible and efficient. It can also become an elegant delivery system for theft when a fraudulent site persuades someone to sign permissions for assets they did not intend to expose.
EIP-712 signatures add another layer of complexity. They make structured signing more readable than a wall of raw hexadecimal data, which is genuinely useful. Yet “readable” does not always mean “understood.” A polished phishing page can frame a signature as:
- verification for a private mint;
- confirmation of a marketplace offer;
- eligibility for an airdrop or staking reward;
- migration to a “new” collection contract;
- activation of commercial rights or community access;
- recovery of a supposedly compromised wallet.
The language changes. The underlying objective does not: obtain an approval, a permit, or a signature that can be exercised against the wallet’s assets.
Why a real-looking marketplace page proves very little
NFT collectors tend to assess legitimacy through visual cues: familiar logos, a clean collection page, blue-check social accounts, high follower counts, or an announcement that seems to match a project’s usual vocabulary. Drainer operators understand this exceptionally well. A clone of a marketplace or mint page only needs to look credible for the few seconds between a link click and a wallet signature.
This is why NFT phishing protection cannot rely solely on recognizing “bad websites.” The more useful question is operational: what will this signature allow after I approve it?
A legitimate interaction may still request a broad approval, especially on older or less refined contracts. That does not make it automatically fraudulent. It does mean the decision deserves context. We should know the application, the contract address, the action being performed, and whether the scope of the permission matches that action.
| Transaction request | What it can mean | Risk level if unexpected |
|---|---|---|
| Wallet connection only | The website can see the public address and request later actions | Low, but still reveals wallet identity |
| Sign-in message | Often used to authenticate a wallet without spending assets | Moderate if the message is unclear or comes from an unfamiliar site |
setApprovalForAll | Grants an operator authority over NFTs in a collection contract | High |
| Token allowance or Permit2 request | Lets a spender move specified fungible tokens, sometimes under broad terms | High |
| Direct transfer | Sends a named asset immediately | Very high and usually obvious |
| Listing signature | Can be normal on a known marketplace, but must match the intended item and platform | Context-dependent |
The comparison is not merely technical. It is about proportionality. A free mint should not need sweeping authority over an established collection in the same wallet. A Discord verification should not require any asset approval. A claim page that asks us to sign a message can be legitimate—but if that signature preview refers to an unfamiliar “spender,” a broad permit, or an opaque contract, the right response is to stop.
The business model behind the scam is built for scale
The phrase “wallet drainer” can imply a lone criminal operating an improvised phishing page. In practice, many campaigns are organized around Drainer-as-a-Service, or DaaS. Developers create the infrastructure: cloned interfaces, customizable smart contracts, wallet-targeting logic, analytics, and methods for moving stolen assets quickly. Affiliates then drive victims to the pages.
DaaS kits have reportedly been rented or purchased for roughly $100 to $500, sometimes through subscriptions. The economics explain why the threat persists even as one drainer brand disappears and another emerges. An affiliate may receive a large share of stolen proceeds—commonly described in the 75% to 95% range—while the kit operator takes a cut, often around 5% to 25%.
That division of labor changes how we should read the threat landscape. The person posting a compromised Discord announcement, responding to a tweet, or buying promoted search placement may not be the person who wrote the drainer. The campaign can be assembled from reusable parts: stolen social credentials, a cloned frontend, a rented drainer, and a network of wallets prepared to receive and liquidate assets.
For collectors, the practical lesson is uncomfortable but clarifying: a scam does not need to be amateurish to be false. It may have better design, faster support replies, and more convincing copy than the collection site it impersonates.
The common NFT scam patterns that lead to drainers
The delivery method evolves more quickly than the approval mechanics. The following patterns recur because they exploit real behavior within NFT communities:
1. Compromised project announcements. A verified social account or Discord administrator account posts an “unexpected” mint, claim, migration, or partnership link. Urgency does the work: limited supply, a narrow claim window, or an exclusive allowlist.
2. Fake marketplace offers. A collector receives a message saying an offer has been made on an NFT, often with a link to “accept” it. The page imitates a familiar marketplace but directs the wallet toward a malicious approval or signature.
3. Airdrop bait. An unsolicited NFT or token appears in the wallet, accompanied by a name, image, or description urging the holder to visit a claim page. The asset itself may be harmless; interacting with the linked site is the trap.
4. Counterfeit verification flows. A Discord server, mint site, or community tool asks the user to “verify ownership.” A normal wallet sign-in can be part of authentic verification. An approval request is a different category entirely.
5. Search and ad impersonation. Sponsored results, typo-squatted domains, and near-identical URLs direct users to clones. This is especially effective when collectors are moving quickly to a hot mint or a volatile secondary-market opportunity.
6. Recovery scams after a first incident. Victims are approached by alleged investigators, white-hat teams, or recovery specialists who request wallet access, payments, or another signature. A theft creates urgency; urgency creates a second opening.
Scarcity is part of NFT value, but scarcity language is also the scammer’s favorite pressure tool. A real opportunity survives the minute it takes to inspect the transaction.
Why 2025 losses fell—and why the problem did not disappear
The decline in wallet-drainer losses during 2025 deserves a measured reading. An 83% reduction in reported losses and a 68% reduction in victims suggest that defensive habits, wallet interfaces, enforcement pressure, and the market’s accumulated memory have all begun to matter.
Transaction simulation is central to that improvement. Security tools and browser extensions can simulate a proposed transaction on a forked view of the blockchain before it is signed. Instead of presenting a collector with an abstract contract interaction, the interface can warn that the result would grant a suspicious operator control over NFTs or cause specific assets to leave the wallet.
Tools such as Pocket Universe and Wallet Guard are designed around this principle: translate on-chain consequences into a warning a human can act on. They do not replace judgment, and no extension can perfectly interpret every novel attack path. But they narrow the gap between what a smart contract does and what a wallet owner sees.
Hardware wallets also contribute to better crypto wallet security by keeping private keys off the browser-connected device. This is a major protection against malware that attempts to extract keys or initiate unauthorized signatures. However, it is not magical insulation from a wallet drainer. If we manually approve a malicious transaction on the hardware wallet, the device has protected the key while faithfully signing the harmful instruction.
The 2025 figures also reflect an important market reality: losses can fall while capability remains. The biggest individual drainer theft still reached $6.5 million. The problem becomes less visible in aggregate long before it becomes irrelevant to someone holding a rare NFT, a valuable wallet history, or a concentrated token position.
Build a wallet structure that limits what one signature can destroy
The best answer to how to avoid NFT scams is not a single tool. It is a layered wallet practice that assumes one interface, one social account, or one moment of distraction may eventually fail.
Separate where you store value from where you explore
A collector wallet should not have to perform every task. We can divide wallets according to purpose:
- Vault wallet: long-term custody for high-value NFTs, core tokens, and assets with deep provenance. This wallet connects rarely, ideally only to well-understood destinations.
- Trading wallet: used for established marketplaces, listing activity, and regular execution. Its contents should reflect what we are prepared to transact.
- Mint or discovery wallet: used for new projects, experimental claims, unfamiliar dApps, and community links. Treat it as an exposure wallet, not a gallery.
- Burner wallet: a low-balance address for one-off interactions that do not deserve access to any meaningful asset inventory.
This structure is not paranoia. It is portfolio containment. In traditional custody, a collector would not carry every work they own into an unfamiliar appraisal room. In digital asset markets, wallet segmentation serves the same purpose: it limits the blast radius of a bad approval.
For more significant holdings, multi-signature custody can add a further control layer. Requiring more than one approval before funds move is especially useful for shared treasuries, funds, or high-value collections. It is less convenient for rapid NFT trading, but convenience is precisely the variable that drainers monetize.
Read the request, not the marketing around it
Before signing, pause at the wallet prompt rather than at the site’s call-to-action. The site can say “Claim Now.” The wallet prompt is where the operational truth begins.
Ask four specific questions:
1. What am I doing right now? Listing one NFT, signing in, claiming a token, or granting an operator permission are materially different actions.
2. Which wallet is connected? If the vault wallet is open when the interaction only requires a burner wallet, stop and switch contexts.
3. Who receives the authority? The operator or spender address should correspond to a service we recognize. An unfamiliar address is not automatically malicious, but it removes the presumption of safety.
4. Is the scope sensible? A signature for a login may be normal. An approval covering all NFTs when we intended to view a collection is not.
A further discipline helps: never arrive at a marketplace, mint, or claim page through a link from a direct message, a social reply, or an unsolicited asset. Use saved bookmarks, type the known address, or navigate from an official channel that has been independently verified. This sounds mundane because it is. Good security is often a collection of small refusals to be rushed.
Treat identity checks as a separate security question
Identity verification is increasingly discussed around marketplaces, fiat on-ramps, and institutional-grade custody. There is a legitimate role for compliance systems, especially where payment rails and account recovery are involved. But a platform’s request for identity information does not validate a wallet signature, and a wallet signature does not validate a platform’s identity practices.
When assessing services that handle sensitive user information, it is useful to understand the broader landscape of identity verification platforms for fintech enterprises. For NFT users, the core boundary remains simple: never upload identity documents or connect a valuable wallet merely because a site uses the language of verification.
Approval management: the maintenance task collectors postpone too long
Approvals are not necessarily a sign that something has gone wrong. They are part of how decentralized marketplaces function. The issue is accumulation. A wallet that has traded across many mints, games, marketplaces, and experimental protocols may hold old permissions that no longer serve any purpose.
We should periodically review active token and NFT approvals using tools such as Revoke.cash or the Token Approval function in Etherscan. The objective is not to revoke everything reflexively; doing so can create friction and transaction costs when returning to trusted applications. The objective is to remove authority that no longer has a clear utility relationship to our current activity.
A practical review rhythm looks like this:
1. After a new mint or unfamiliar dApp interaction, inspect whether an approval was created and whether its scope matches the action.
2. After a major sale or trading period, remove permissions granted to platforms that are no longer in use.
3. After any suspicious click or signature, move quickly: revoke approvals from a clean device, document the connected addresses, and transfer remaining assets to a fresh wallet if the situation warrants it.
4. Before moving a valuable collection into a wallet, audit that wallet’s existing approvals first. A pristine receiving address is more valuable than a convenient but overexposed one.
Revoking an approval prevents future transfers under that authorization. It does not reverse a transfer that has already occurred, and it does not repair a compromised seed phrase. If a seed phrase or private key may have been exposed, the appropriate response is to abandon the wallet for meaningful custody and move surviving assets to a newly created address.
The threat is no longer confined to Ethereum NFT culture
Ethereum remains the primary environment for many wallet-drainer campaigns because its NFT ecosystem is large, liquid, and built around standardized approval flows. But the social technique travels well. Attackers have expanded toward other ecosystems, including a fake Magic Eden site that reportedly drained around $500,000 in Bitcoin Ordinals.
That expansion matters because users often transfer assumptions across chains. They may believe that a different asset format, a newer marketplace, or a less familiar ecosystem is inherently safer. In reality, the exploit often follows the user interface: counterfeit domains, rushed mint announcements, malicious signing requests, and asset-transfer permissions presented as ordinary participation.
The technical details vary. The emotional architecture does not. There is always a reason to act now, a reason not to inspect closely, and a reason to believe everyone else already has.
For collectors moving between Ethereum NFTs, Ordinals, gaming assets, and tokenized memberships, interoperability brings opportunity—but it also expands the number of interfaces entrusted with attention. We should make each new ecosystem earn our confidence rather than lending it automatically from a familiar wallet brand or marketplace name.
The durable defense is a slower signature culture
NFT markets reward speed. A rare listing disappears, an allowlist opens briefly, a collection’s cultural consensus can shift over a weekend, and liquidity often arrives before perfect information does. Yet the mechanics of wallet drainers reveal where speed becomes expensive: at the signature prompt.
The strongest defense is not to withdraw from the market or treat every new contract as hostile. It is to place a deliberate boundary between discovery and custody. Keep high-conviction assets in a wallet that does not chase every opportunity. Use transaction simulation. Maintain approval hygiene. Treat unsolicited links as advertisements for risk, not invitations to participate.
A wallet is more than a balance sheet. It contains the provenance of our activity, the utility rights attached to tokens, and sometimes an entire record of community membership. Protecting it is therefore not an interruption to collecting or trading. It is the condition that lets those activities retain their value.