Scan — spot the scam.
Paste a suspicious URL, email, Telegram message, WhatsApp text or DM. We pattern-match it against the most common UK crypto scams. Everything runs in your browser — nothing is uploaded.
> HOW IT WORKS
The scanner runs three layers of detection:
- Reference database — — curated entries (v—). Confirmed-scam domains, platform names, verbatim phishing phrases, commonly-misused names and on-chain addresses. Sourced from Southbank Research's Eyes Wide Open: The Risks of Crypto by Sam Volkering, the FCA ScamSmart Warning List, CryptoScamDB, Action Fraud bulletins, and aggregated UK media reporting.
- Live enrichment — best-effort fetch from CryptoScamDB at page load to add fresh community-blacklisted domains. Silent fail; the static database is always the floor.
- Heuristic patterns — 18 regex rules detecting the shapes of scams independent of database entries: lookalike domains, seed-phrase requests, FCA/HMRC impersonation language, "recovery agent" pitches, pig-butchering openers, "pay a small gas fee" drainers, doubler / celebrity-giveaway scams, urgency language, malicious permit / setApprovalForAll signatures.
Database hits show SOURCE attribution so you can verify any flag. Heuristic matches are pattern-only — high confidence on shape, not identity.
The scanner uses heuristics and a curated list — false positives happen and false negatives are guaranteed. Treat a clean result as "no obvious red flags", not "definitely safe". When in doubt: do not click, do not sign, do not pay. Verify by typing the official URL yourself.
If you have already been targeted — Action Fraud 0300 123 2040 / actionfraud.police.uk · FCA Consumer Helpline 0800 111 6768 · NCSC phishing reports report@phishing.gov.uk · your bank's fraud line on the back of your card.
Spotted a scam not in our database? Drop it on the Ideas board and we'll add it to the next database build.