Users of XUMM, one of the most popular noncustodial instruments for storing and sending digital assets across XRP Ledger, are yet again targeted by impersonators. The XUMM team released a statement to protect its userbase from scammers.
Time has come for "white lists"
According to the announcement by XRPL Labs—the creators of XUMM—many fraudulent Twitter accounts are inviting XUMM users to send XRP coins. Scammers impersonate the main account of the XUMM wallet, the XUMM support department, XRPL Labs and its lead developer Wietse Wind.
XRPL Labs decided to introduce a "white list" of legitimate Twitter accounts maintained by XRPL developers. Only the accounts @XRPLLabs, @XummWallet, @XummSupport and @WietseWind represent XRPL Labs, its projects and leader.
In addition, the email address firstname.lastname@example.org is used to interact with customers, while FAQ and the support chat are located at https://support.xumm.app.
The list of domain names operated by the XUMM project is also published by XRPL Labs. The main address is https://xumm.app, while https://xumm.dev, https://xumm.pro, https://xumm.me and https://xumm.io are additional ones.
Only scammers ask for your XRP
To implement an additional level of security, all legitimate accounts are mentioned in "account description" boxes belonging to each other.
Finally, neither XRP Labs, XUMM nor Wietse Wind will ever ask XRP holders to send them coins. Therefore, anyone who invites XRP holders to participate in an airdrop or to "restore" their XRP accounts is undoubtedly a blatant scammer.
As covered by CryptoComes previously, XRP Ledger scams are incredibly profitable. XRP Forensics, the security department of XRPLorer, announced that the average "XRP giveaway" brings its masterminds $60,000 per day.
In 2020, scammers launched both primitive scam campaigns ("YouTube giveaways") and very sophisticated operations including copies of reliable websites and spam newsletters.