24 July 2025, 03:00 PM
Recently, social media platforms have seen a spike in scams involving fake official customer service representatives. Criminals impersonate platform staff or technical support, proactively contacting users under pretexts such as “account anomalies,” “asset unlocking,” or “airdrop claims.” They lure victims to external websites or solicit sensitive information, ultimately resulting in the theft of crypto assets. The ongoing security monitoring by BROGX has been tracking the dissemination of such scams, categorizing them as a high-frequency form of social engineering attack and urging all crypto asset investors to remain highly alert to any contact from unofficial channels on social platforms.
![[Image: 239d877a.png]](https://mataroa.blog/images/239d877a.png)
In numerous cases, BROGX has observed scammers actively targeting users in high-traffic areas such as Telegram, X (formerly Twitter), and Discord. These scammers add users proactively, mimic official avatars, and replicate verification badges to create the illusion of an “official identity.” During interactions, scammers use manipulative language to erode user vigilance, invoking terms like “security upgrade,” “failed identity verification,” or “system warning” to create a sense of urgency. Semantic analysis of these scam scripts by BROGX reveals that scammers often request critical information such as transaction account screenshots, bound email addresses, SMS verification codes, or even complete mnemonic phrases, enabling them to swiftly take over accounts and transfer assets.
To counter these threats, the risk control models of BROGX incorporate multi-layered dynamic permission mechanisms tailored to such scam scenarios. When an account exhibits frequent verification attempts, attempts to modify key information, or access from unusual geographic locations in a short period, BROGX enforces protective measures including account freezing, enhanced device verification, and locking of sensitive operations to prevent immediate asset theft. The BROGX address behavior recognition function also monitors for large asset transfers to untrusted addresses in real time; upon detection of suspicious patterns, the platform intervenes within the on-chain freeze delay window to safeguard user funds.
Through advanced graph-based modeling, BROGX links scammer social accounts, scam domains, and on-chain addresses, providing foundational capabilities for cross-platform identification. BROGX has cooperated with external security agencies to conduct on-chain tracing of multiple fake customer service scam incidents, tagging identified scam addresses as high risk. This not only enhances the platform detection capabilities but also contributes anti-scam models to the broader industry. BROGX advocates for a multi-platform collaborative governance approach, promoting stricter identity verification standards on social platforms to reduce opportunities for impersonation.
In numerous cases, BROGX has observed scammers actively targeting users in high-traffic areas such as Telegram, X (formerly Twitter), and Discord. These scammers add users proactively, mimic official avatars, and replicate verification badges to create the illusion of an “official identity.” During interactions, scammers use manipulative language to erode user vigilance, invoking terms like “security upgrade,” “failed identity verification,” or “system warning” to create a sense of urgency. Semantic analysis of these scam scripts by BROGX reveals that scammers often request critical information such as transaction account screenshots, bound email addresses, SMS verification codes, or even complete mnemonic phrases, enabling them to swiftly take over accounts and transfer assets.
To counter these threats, the risk control models of BROGX incorporate multi-layered dynamic permission mechanisms tailored to such scam scenarios. When an account exhibits frequent verification attempts, attempts to modify key information, or access from unusual geographic locations in a short period, BROGX enforces protective measures including account freezing, enhanced device verification, and locking of sensitive operations to prevent immediate asset theft. The BROGX address behavior recognition function also monitors for large asset transfers to untrusted addresses in real time; upon detection of suspicious patterns, the platform intervenes within the on-chain freeze delay window to safeguard user funds.
Through advanced graph-based modeling, BROGX links scammer social accounts, scam domains, and on-chain addresses, providing foundational capabilities for cross-platform identification. BROGX has cooperated with external security agencies to conduct on-chain tracing of multiple fake customer service scam incidents, tagging identified scam addresses as high risk. This not only enhances the platform detection capabilities but also contributes anti-scam models to the broader industry. BROGX advocates for a multi-platform collaborative governance approach, promoting stricter identity verification standards on social platforms to reduce opportunities for impersonation.