If there’s one thing you need to take away after reading this article, it’s this:

<aside> ⚠️

YOUR SECRET PHRASE (ALSO KNOWN AS "SEED PHRASE") IS THE “MASTER KEY” TO EVERYTHING YOU OWN. NO ONE ELSE BESIDES YOU SHOULD KNOW IT.

</aside>

Scammers will try to get this information from you through a variety of ways.

Some may direct message (DM) you, offering you something (e.g. tokens, support, etc), and request you click an external link. Do not click it!

Examples include:

• Impersonator representing a reliable project (team member, help desk, etc.)
• Impersonator of a community asking for help or offering a service (e.g. send X for Y reason, offering to be an escrow for a trade, etc)

You could also inadvertently click on an advertisement or link that has a slight misspelling of your intended destination (or entirely different):

Double- and triple-check the spelling of links. A common alteration to links is to change the domain suffix of a URL (real: worldofwomen.art | fake: worldofwomen.cc). A common alteration to OpenSea collections is to add an extra letter. It is usually safest to use the links listed in the official project Twitter page or Discord.

<aside> ⚠️ Bookmark legitimate sites:
https://metamask.io/ https://opensea.io/ https://worldofwomen.art/

Always triple check the URL is the intended destination before you click and after you arrive.

</aside>

Never even type your seed phrase in website claiming to be legitimate because it may install a keylogger which allows the scammer see what you type 😱

A common phishing scam works like this:

1. You are asked by an impersonator of a reliable source (support desk, admin of a giveaway/contest, etc), to click a link to an external web destination (contest page, support page, etc).
2. At the website you are prompted to connect your wallet, an action which typically brings up a MetaMask popup, asking you to sign a transaction to confirm the action.
3. Instead of MetaMask popup, they display a fake MetaMask popup window which asks you to sign in.
4. You try entering your password, but you receive an error message so scammers suggest you to enter your seed phrase.
5. Unaware, you type in your seed phrase, and before you even hit enter, the scammer has your seed phrase and can move all your NFTs and ETH out of your wallet 😳