Top 20 Crypto Scams Targeting UK Residents in 2026

1. Fake crypto-investment platforms

Scammers build professional-looking websites and make contact through social media, cold calls or unsolicited messages. They promise consistent, high returns and often display fabricated account screenshots to demonstrate imaginary profits. Once funds are sent, the platform either restricts account access or demands further fees before any withdrawal can proceed. Victims typically discover the fraud when attempting to retrieve their money.

The FCA stresses that even when a firm appears on its register, crypto investments typically sit outside the regulatory perimeter and carry none of the consumer protections that apply to regulated financial products. Always check both the FCA Register and the FCA Warning List before sending funds to any platform. The UK's crypto regulatory framework is progressively tightening, but the majority of investment platforms operating today remain unregulated.

Red flags: unsolicited contact, guaranteed or unusually high returns, pressure to act quickly, requests to keep the investment confidential, instructions to move conversation to WhatsApp or Telegram.

Protect yourself: treat every unsolicited investment approach with scepticism; check the FCA Register and Warning List; never invest based solely on social media recommendations.

2. Ponzi schemes

Ponzi operators use incoming funds from new investors to pay returns to earlier participants, creating a convincing illusion of profitability. The structure depends entirely on a constant flow of new money; when recruitment slows, the scheme collapses and operators disappear. Crypto Ponzi schemes are attractive to fraudsters because tokens are harder to trace and cross-border recovery is difficult.

Red flags: low-risk, high-reward marketing; constant pressure to recruit friends and family; a lack of verifiable business information; secretive or unnecessarily complex strategies.

Protect yourself: research the company through Companies House and the FCA; be wary of any scheme where returns depend on recruiting new participants rather than genuine investment activity.

3. Insider dealing and market manipulation

Coordinated groups manipulate prices by orchestrating trades or circulating false information across social media. Tactics include wash trading — repeatedly buying and selling between controlled wallets to create artificial volume — and coordinated price swings that are timed to catch retail investors off-guard. Ordinary holders are typically left holding assets that collapse in value once the manipulation ends.

Red flags: unexplained spikes in trading volume; social-media hype unsupported by credible news; invitations to join exclusive trading groups or signals channels.

Protect yourself: research an asset's history independently; verify information across multiple sources before acting; report suspected manipulation to Action Fraud.

4. Pump-and-dump schemes

Fraudsters acquire a low-value token quietly, then use influencers, AI-generated celebrity endorsements and coordinated messaging across private group chats to generate hype. Once the price rises sufficiently, they sell their holdings, causing the price to collapse. Investors who bought during the hype phase are left with near-worthless assets. The FCA's enforcement action against HTX demonstrated how seriously UK regulators are beginning to treat coordinated crypto promotion without proper authorisation.

Red flags: group chats pushing hot tips; rapid price rises unrelated to genuine news; claims of guaranteed returns within specific timeframes.

Protect yourself: research token distribution and who controls liquidity; treat social-media price hype with caution; verify whether smart contracts have been independently audited.

9. Sextortion and blackmail

Criminals threaten to distribute private images or videos unless a ransom is paid, typically demanded in cryptocurrency to make the payment harder to trace. Some extortion emails include a password taken from a data breach to add a veneer of credibility and increase the victim's sense of exposure. The cryptocurrency payment demand is a consistent marker of this type of fraud.

Red flags: unsolicited messages claiming to hold compromising content; demands for crypto payment; emails containing a known password from a previous data breach.

Protect yourself: do not pay; save evidence and report to the police; check if your credentials have been exposed via haveibeenpwned.com; use strong, unique passwords and enable two-factor authentication across all accounts.

10. ICO and token-sale fraud

Fraudulent projects run token sales or Initial Coin Offerings with no functioning product behind them. White papers may be plagiarised, partnerships fabricated and celebrity endorsements either false or paid without the endorser understanding the product. After raising funds the developers vanish, or the project transitions into a pump-and-dump or rug-pull. The lack of UK regulatory coverage for most token sales means victims have minimal recourse.

Red flags: no working product or prototype; plagiarised white paper; unrealistic return claims; heavy reliance on celebrity or influencer promotion.

Protect yourself: read the white paper independently; verify team credentials; consult a regulated financial adviser before committing meaningful funds to any token sale.

11. Fake wallet applications

Counterfeit wallet apps are built to look identical to legitimate products. When users enter their seed phrase or transfer funds, the app redirects assets directly to the fraudster. Some fake apps have appeared in legitimate app stores and been promoted by paid influencers on social media.

Understanding what a legitimate hardware or software wallet looks like — and how to verify it before use — is covered in the Wallets Part 1 guide on self-custody and Ledger vs Trezor, and in the Wallets Part 3 guide on hot wallets for UK traders. The principle applies to all wallet software: always download from the manufacturer's official website, never from a search engine result or a link in an unsolicited message.

Red flags: misspellings in app names or URLs; limited reviews or implausibly positive ratings; no verifiable developer identity.

Protect yourself: bookmark official wallet websites rather than searching for them; verify the developer identity before installing; download only from official sources.

12. Digital asset theft and fake giveaways

Fraudsters hack wallets or engineer situations in which victims reveal private keys or seed phrases. Fake giveaways — often posing as exchange promotions or celebrity-endorsed events — require participants to send a small amount of crypto first, with promises of a larger return. The promised return never arrives. Exchange hacks and compromised DeFi platforms also result in direct asset losses that are typically unrecoverable.

Red flags: any giveaway requiring an upfront payment; unsolicited links to promotional events; unknown games or platforms promising outsized rewards.

Protect yourself: store seed phrases offline and never photograph or type them into any online service; split significant holdings across multiple wallets; keep devices and software updated.

13. Cryptojacking — unauthorised mining

Malware covertly recruits a victim's computer, phone or server to mine cryptocurrency on the attacker's behalf. The victim experiences degraded device performance, overheating and higher electricity consumption without understanding the cause. Cryptojacking malware is typically delivered through phishing emails or compromised websites.

Red flags: sudden slowdown in device performance; persistent overheating; abnormally high CPU usage or unusual electricity bills.

Protect yourself: monitor device resource usage; use up-to-date antivirus software; consider disabling JavaScript on unknown sites; run regular malware scans.

18. Money laundering via crypto ATMs

Fraudsters instruct victims to withdraw cash and deposit it through Bitcoin ATMs — often under the cover of a fake job arrangement, a purchase or a supposed debt. Once the funds are deposited to the scammer's wallet address, the transaction is irreversible. The FCA maintains a register of permitted crypto ATM operators; any machine not registered with the FCA is operating unlawfully in the UK.

Red flags: any instruction to use a crypto ATM to pay for services, settle a debt or fulfil a job; kiosks not registered with the FCA.

Protect yourself: verify ATM registration with the FCA before use; treat any instruction to pay via crypto ATM from an unknown party as a scam.

19. NFT fraud and airdrop or giveaway scams

Fraudsters sell duplicate NFTs or create fake marketplace websites that closely replicate legitimate platforms. Prices are artificially inflated via wash trading — coordinated purchases between accounts controlled by the same operator — before a sell-off collapses the price. Separately, giveaway scams distribute links to airdrops that require connecting a wallet; once connected, the fraudulent contract drains available assets from the wallet.

Red flags: unverified sellers; URLs with spelling errors; sudden unexplained price surges; low transaction counts suggesting limited genuine activity.

Protect yourself: examine an NFT's full transaction history before purchasing; verify the marketplace's SSL certificate; never connect a wallet to an unverified site to claim a supposed airdrop.

20. Recovery scams and fake regulators

After a victim has lost money to a crypto scam, a second wave of fraud often follows. Operators posing as recovery agencies — and sometimes impersonating the FCA itself — contact victims and promise to retrieve lost funds for an upfront fee. Some claim the victim must pay taxes or administrative charges before funds can be released. The FCA will never contact individuals to request payment or banking details.

If you have experienced fraud, report it through the official channels — Action Fraud at 0300 123 2040 or via actionfraud.police.uk. In Scotland, report to Police Scotland on 101.

Red flags: unsolicited offers to recover lost funds; upfront fee requests; claims from supposed FCA or police representatives that money is required to release assets; communication via personal email or WhatsApp.

Protect yourself: ignore all unsolicited recovery offers; the FCA will never ask for payment; report any approach to Action Fraud immediately.

This article is intended as an educational resource for UK residents and draws on publicly available information from official UK sources. It is not financial advice, legal advice or a recommendation to take any specific action. The scam descriptions and protective guidance in this article are based on information published by:

• Financial Conduct Authority (FCA) — fca.org.uk · ScamSmart · FCA Warning List
• National Crime Agency (NCA) — nationalcrimeagency.gov.uk
• National Cyber Security Centre (NCSC) — ncsc.gov.uk
• Action Fraud — actionfraud.police.uk · 0300 123 2040
• Metropolitan Police — met.police.uk
• Police Service of Northern Ireland (PSNI) — psni.police.uk

This content relates specifically to the United Kingdom regulatory environment. References to FCA registration, FSCS protection, the Financial Ombudsman Service and UK reporting channels apply to UK residents. If you are based outside the UK, consult your own jurisdiction's regulatory guidance.

No financial advice: nothing on this page constitutes financial, investment or legal advice. NoctisCrypto is an information service. Always conduct your own research and consult a regulated financial adviser before making any investment decision. Crypto assets are largely unregulated in the UK. Your capital is at risk.