Hi everybody,
I'm curious to know, especially from safety point of view, what's up with all these bogus Airdrops?
Now, I'm not talking about those that ask for your private keys, because that's obvious, but I'l more interested to know what a scammer can gain from simply having a list of ETH address and emails. Granted, they can see the list of emails, use it for spam etc., but is there any way they can use the information gleaned in a more malicious manner? Can they somehow use ETH address to target the unsuspecting user later on?
even if an Airdrop seems legit I still make it a point to always use a disposable MEW when signing up, but I don't know of a few people in another group that have fallen prey to this sort of scam.
Cheers and thanks for your thoughts.
That would be pure stupidity and mindlessness if you provide your myetherwallet private key simply because of an airdrop which you might not even have checked yourself properly. But even if the project looks legit, I would not give my MEW private key. That is a big NO NO. But some fools are easily drawn to it simply because of free tokens which end up worthless.
That is beyond obvious and I did mention I wasn't referring to this scams that ask for your private key (that is obvious and too big a red flag). I was more curious about what possible exploits there could exist or what they could gain other than your email for spam.
I'm talking about bogus airdrops that just ask for your ETH address and an email, nothing more. This came about because a person in a telegram group fell for an airdrop scam recently.
https://exrp.io is the official site and just closed their airdrop, however she signed up for this one:
https://eripple.ioFrom what I saw, all they ask for is ETH address and email, so I was curious what they could gain and if there was an exploit I wasn't seeing.