CAUTION: phishing emails are imitating 1inch communications

1inch urges users to stay vigilant against phishing emails masquerading as the official 1inch newsletter.

Phishing scams are one of the most common threats in the crypto space, and attackers are always looking for new ways to trick users into revealing sensitive information. Recently, we’ve observed fraudulent emails imitating official 1inch communications. These phishing attempts are designed to look legitimate but contain malicious links or attachments that could compromise your security.

Understanding how phishing works and how to identify suspicious messages is essential for staying safe online.

How to stay safe

• Always verify the sender’s email address. The 1inch official newsletter emails ONLY EVER comes from news@1inch.io. If you receive an email from a different sender, do not interact with it.
• Beware of unusual content or urgent requests. Phishing emails often create urgency or falsely inform recipients about rewards or token distributions. The 1inch newsletter never includes personalized content or urges immediate action.
• Do not click on links from unknown sources. If an email contains links, do not click on them.

How to spot a phishing email

Bad actors often make phishing emails look as realistic as possible. Here are key warning signs to watch for:

• Check the Sender’s Email Address – Some attackers use tools to mask the real sender and display a fake email address. To check, hover over the sender’s name in your email client to reveal the actual address behind it. If it differs from what is displayed, it is likely a phishing attempt.
• Fake Sender Email Addresses – 1inch will only send 1inch official newsletter emails from news@1inch.io. If an email comes from an unfamiliar address, it is not from us.
• Unexpected Requests – 1inch will never ask you to provide personal information, private keys, or login credentials via email.
• Unusual Claims About Rewards or Airdrops – Be skeptical of emails promising free tokens, exclusive offers, or urgent security updates.
• Suspicious Links and Attachments – Always hover over links to check where they lead before clicking. If you're unsure, visit our official website directly instead of using email links.

Best Practices to Stay Safe

To protect yourself against phishing scams, follow these security best practices:

✅ Always verify the sender before taking action. If something seems off, double-check by reaching out to official support channels.

✅ Hover over sender email addresses and links to ensure they match official sources.

✅ Bookmark the official 1inch website and access it directly rather than clicking on email links.

✅ Enable Two-Factor Authentication (2FA) wherever possible to add an extra layer of protection.

✅ Use strong, unique passwords for each service and consider using a password manager.

✅ Stay informed about common scams in the crypto space and educate yourself on the latest security threats.

What to do if you receive a suspicious email:

1. Do not click on any links or download attachments.
2. Do not reply or provide any personal information.
3. Mark email as spam or phishing in your email client.

Staying secure in Web3

Crypto phishing scams are constantly evolving, but by staying vigilant and following best security practices, you can protect yourself from falling victim. At 1inch, we are committed to providing security resources to help our community navigate Web3 safely.

For more security tips, visit https://blog.1inch.io/tag/security/. 

Take the right precautions to protect yourself in the Web3 space!