Connect with us

Crypto

'Disturbing surge in cryptocurrency fraud' led by young, tech-savvy Nigerian men

Published

on

'Disturbing surge in cryptocurrency fraud' led by young, tech-savvy Nigerian men
Bitcoin fraud trap

(© OlegD – stock.adobe.com)

New research shows 55% of cases involve American victims

SURREY, England — In an eye-opening study that sheds new light on the evolving landscape of digital financial crime, researchers have uncovered a striking pattern in Nigerian cryptocurrency fraud: all convicted perpetrators are male, and nearly two-thirds are under 30 years old. This revelation comes from recent research conducted through an unprecedented collaboration between academic institutions and Nigeria’s Economic and Financial Crimes Commission (EFCC).

The study arrives at a critical moment in global digital finance. Nigeria has emerged as the third-largest player in Bitcoin transactions globally, trailing only Russia and the United States, with cryptocurrency transactions reaching approximately $400 million. This surge in digital currency adoption reflects both opportunity and risk in Africa’s most populous nation, where only 36.8% of adults have access to traditional banking services.

“Our research reveals a disturbing surge in cryptocurrency fraud,” says study lead author Dr. Suleman Lazarus, a cybercrime expert at the University of Surrey, in a statement. “We’re observing a rising generation of young, tech-savvy male offenders who adeptly exploit digital platforms and cryptocurrencies to perpetrate high-stakes fraud.”

The research, published in Current Issues in Criminal Justice, reveals a clear geographical targeting pattern, with 55% of cases involving American victims. This international reach demonstrates how digital currencies have transformed the scope and scale of financial crimes, enabling fraudsters to operate across borders with unprecedented ease.

Advertisement

What makes these findings particularly intriguing is the fraudsters’ educational background. Despite the technical nature of cryptocurrency transactions, only a quarter of convicted fraudsters held university degrees, challenging assumptions about the expertise required for such crimes.

The digital toolbox of these fraudsters primarily consists of mainstream social media platforms. Facebook emerged as the preferred platform, used in 27% of cases, followed by Gmail at 22% and Instagram at 14%. These familiar platforms serve as hunting grounds where fraudsters establish trust before executing their schemes.

The financial scale of these operations is staggering. While some cases involved modest sums around $1,000, others reached heights of $475,000 in cash, with one case involving 1,200 Bitcoin – approximately $81.96 million. These figures underscore the lucrative nature of cryptocurrency fraud and its potential for devastating financial impact.

Bitcoin dominates as the preferred cryptocurrency for fraudulent activities, featuring in 46% of cases. This preference likely stems from Bitcoin’s decentralized nature and the relative anonymity it provides, presenting significant challenges for law enforcement in tracking and recovering stolen funds.

“As cryptocurrencies continue to gain popularity, our research serves as a wake-up call for law enforcement agencies, policymakers, and the general public to remain vigilant against the evolving threats in the digital financial landscape,” warns Dr. Lazarus.

Advertisement

The study illustrates how Nigerian cybercrime has evolved from traditional advance-fee scams to sophisticated cryptocurrency operations, reflecting broader changes in global financial systems and highlighting criminal enterprises’ adaptability. In a digital age where cryptocurrency promises financial inclusion and opportunity, this research serves as a crucial reminder of the shadow economy emerging alongside legitimate digital finance.

Paper Summary

Methodology

The study employed a structured approach, examining court records and case files of convicted cryptocurrency fraudsters from two major EFCC commands in Nigeria. Researchers analyzed 22 cases, documenting the fraudsters’ methods, preferred platforms, victim locations, and financial gains. This approach provided verifiable data from official sources, though it necessarily focused only on cases that resulted in convictions.

Results

The findings paint a clear picture: all convicted fraudsters were male, predominantly under 30, with relatively low formal education levels. They primarily used social media platforms, with Facebook being the most common tool. Most targeted American victims, using Bitcoin as their preferred cryptocurrency. Financial gains varied significantly, demonstrating the range of schemes employed.

Limitations

The research faced several constraints. The sample size of 22 cases, while providing valuable insights, represents only convicted cases, potentially missing more sophisticated operators who evade detection. Additionally, the focus on two EFCC commands might not represent the entire country’s cryptocurrency fraud landscape.

Discussion and Takeaways

The research reveals an urgent need for international collaboration in combating cryptocurrency fraud. The predominance of young male offenders and their focus on American targets suggests a need for targeted intervention strategies and enhanced cross-border cooperation in law enforcement.

Advertisement

Funding and Disclosures

The study, conducted in collaboration with Nigeria’s EFCC, underwent ethical clearance from both the University of Portsmouth (clearance number 1110) and the EFCC. The research team reports no conflicts of interest, with one author’s EFCC employment providing valuable access to case files while maintaining ethical research standards.

Crypto

DeFi’s Newest Threat: How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

Published

on

DeFi’s Newest Threat: How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

Key Takeaways

A ‘Jekyll and Hyde’ Tactic

A newly uncovered class of malicious decentralized finance ( DeFi) liquidity pools is targeting the core infrastructure that cryptocurrency traders rely on to find the best prices, according to new research published July 16 by DeFi infrastructure firm Enso.

The company is calling the deceptive setups “toxic pools.” Unlike typical cryptocurrency hacks that drain funds directly from smart contracts, these pools are engineered to systematically trick transaction simulations. They return attractive, highly competitive price quotes when a crypto wallet or decentralized exchange ( DEX) aggregator runs a simulation, but they alter their behavior the moment the transaction is actually executed on the blockchain.

The result is a subtle, systemic drain: traders receive significantly worse execution prices than they were quoted, or their transactions fail, burning network fees in the process.

“Our investigation leads us to believe this is not simply another isolated smart contract exploit,” said Milos Costantini, co-founder and chief product officer at Enso. “The industry has spent years optimizing price discovery. Our findings suggest the next challenge is verifying execution integrity.”

According to Enso’s report, toxic pools exploit the off-chain “dry-run” simulations that wallets use to preview trades. The malicious contracts detect when they are running in a read-only simulation environment and return an artificially optimized price. Once the transaction is actually broadcast on-chain, the pool alters its mathematical logic to execute the trade at a degraded rate.

Advertisement

To remain hidden from security systems, these pools alternate between honest and malicious states, rendering static code scanners and historical reputation filters ineffective. This bait-and-switch design degrades the user experience and drains user funds through failed transactions. In one case study, a manipulated Curve pool triggered more than 37,000 reverted trades, forcing users to burn nearly $30,000 in gas fees.

Attackers are also exploiting next-generation, modular exchange architectures. On Polygon, a malicious “hook” — a smart contract plugin used in platforms like Uniswap v4 — lured routing systems with fake rates before triggering a 99.1% transaction failure rate.

Findings From On-Chain Forensic Analysis

The research, which spanned roughly two months of on-chain forensic analysis, combined historical archive- node data, transaction trace analysis and smart contract inspections. Enso engineers, with support from contacts at major DeFi protocols Curve Finance and Oku, identified active toxic pools operating across both the Ethereum and Polygon blockchains.

In one documented case study on Ethereum, a manipulated Curve pool processed more than 129,000 swaps. While the pool appeared to be the optimal route, it delivered worse execution than quoted, leading to approximately $225,000 in overstated quotes.

Furthermore, Enso’s team identified multiple blockchain oracle contracts deployed by the same operator to support additional pools, indicating the tactic is likely more widespread than the two documented cases and could represent an emerging template for on-chain extraction.

Advertisement

The findings present a direct challenge to the user-facing layer of the DeFi ecosystem. Popular wallets, consumer-facing interfaces and aggregators depend heavily on automated simulations to guarantee the “best path” for a user’s trade.

Enso’s report highlights that if routing infrastructure cannot distinguish between a legitimate quote and a manipulated one, front-ends will continue to steer users toward these traps. This creates potential legal and financial liability risks for wallet providers and interface operators who promise “best execution” but routinely deliver toxic routes.

In response to the threat, Enso announced it has updated its execution-protection product, Enso Shield, to include dedicated toxic-pool detection. The security tool is designed to bypass standard simulation methods by analyzing live on-chain context, monitoring quote history and using transaction traces to spot execution discrepancies.

Rather than blaming individual decentralized exchanges, Enso has called on the wider cryptocurrency industry to conduct further research into the manipulation of transaction simulations.

“If transaction simulations can be manipulated while real execution tells a different story,” Costantini said, “we need better ways to verify what users actually receive.”

Advertisement
Continue Reading

Crypto

New law protects consumers from cryptocurrency kiosk/ATM fraud | Maui Now

Published

on

New law protects consumers from cryptocurrency kiosk/ATM fraud | Maui Now

July 16, 2026, 5:00 AM HST

Cryptocurrency kiosk/ATM. PC: AARP

Starting Oct. 1, cryptocurrency kiosk/ATMs that accept deposits will no longer be allowed in Hawai’i as a new consumer protection law takes effect.

Hawai’i is now the 35th state to enact a law to protect consumers from losing money in scams involving cryptocurrency kiosk/ATMs and is the first state to ban kiosks that accept deposits. Four other states have completely banned these machines. Other states have imposed transaction limits, mandated refunds for fraud, increased warning signs, required printed receipts and passed other consumer safeguards.

Advertisement

“The use of cryptocurrency kiosks in scams was increasing exponentially in Hawai’i and across the nation. Last year, the FBI said Hawai’i consumers reported losing $3.85 million through fraud involving cryptocurrency kioks. That’s nearly four times the amount reported lost in 2024,” said Keali’i Lopez, AARP Hawai‘i state director. “That’s why AARP fought hard to pass Act 224. We’re grateful to our advocacy volunteers and others who shared fraud stories, testified, called and sent letters and emails to help pass the law. We’re also thankful to lawmakers who acted decisively to protect consumers.”

The FBI said kupuna were especially vulnerable to cryptocurrency kiosk/ATM fraud and accounted for the majority of the losses. The machines look like bank ATMS and could be found in grocery stores, convenience stores, pharmacies, gas stations and other locations.

“Fraudsters use cryptocurrency kiosks like a getaway car in a bank robbery,” Lopez said. “They convince consumers through romance scams, by posing as an IRS agent or other official, or through a technology scam, to take money out of their banks and deposit it in the cryptocurrency kiosk and once the money is put into a scammer’s cryptocurrency wallet, it is gone.”

Advertisement
Continue Reading

Crypto

Luno Pushes South Africa to Rewrite Crypto Rules Through Parliament, Not Proclamation

Published

on

Luno Pushes South Africa to Rewrite Crypto Rules Through Parliament, Not Proclamation

Key Takeaways

Strict Enforcement and Steep Penalties

Cryptocurrency exchange Luno has launched a formal challenge against a proposed overhaul of South Africa’s foreign exchange laws, arguing that the National Treasury’s plan to bring digital assets under an apartheid-era capital flow regime is unconstitutional because it bypasses Parliament. The challenge was detailed in Luno’s formal submission to the National Treasury on the Draft Capital Flow Management Regulations.

The draft rules, jointly published by the Treasury and the South African Reserve Bank for public comment, aim to modernize the country’s exchange controls. However, Luno warns that the proposal contains highly restrictive measures that threaten fundamental property and privacy rights.

As previously reported by Bitcoin.com News, the draft regulations seek to replace South Africa’s 1961 Exchange Control Regulations with a risk-based system focused on monitoring cross-border transactions and combating illicit financial flows. Violations could carry penalties of up to five years in prison, a fine of $53,000 (1 million South African rand), or both.

In its submission, Luno raised serious alarms over three specific enforcement provisions: asset seizure without court orders, forced liquidations and business-ending sanctions. Marius Reitz, Luno’s general manager for Africa, argued that changes of this magnitude must not be enacted via ministerial regulation.

“By proceeding through ministerial regulation, the executive branch effectively bypasses the democratic process for changes that will affect the fundamental property and privacy rights of millions of South Africans,” Reitz said. “They should, in our view, have been enacted as a new Act passed through Parliament.”

Luno further charged that the National Treasury is contradicting the central bank’s own policy roadmap, which identifies stablecoins as potential future money capable of facilitating low-cost, borderless payments. Yet, Luno argues, the Treasury’s draft regulations treat all digital assets as identical, bringing bitcoin, stablecoins and tokenized real-world assets under the same restrictive capital flow framework.

Advertisement

“By attempting to capture every digital asset regardless of utility or economic function, Treasury risks unintentionally stifling South Africa’s broader blockchain technology sector,” Luno stated.

Proposed Solutions for Industry Growth

The exchange warned that the proposed reporting requirements for transactions above an unspecified threshold would create an “unmanageable administrative burden” for platforms and the state alike, given that large transaction volumes are processed within seconds.

“Our experience demonstrates that overly restrictive regulation simply pushes digital asset activity underground or offshore, beyond the reach of domestic regulators and tax authorities,” the company added.

Meanwhile, the crypto exchange’s submission also shared several key recommendations to resolve some of the friction points. First, Luno calls for the enactment of the final crypto capital flow framework through an Act of Parliament rather than executive regulation. It also recommends the designation of crypto assets bought and held on South African-licensed exchanges as onshore assets.

Luno wants regulations to distinguish between digital asset classes based on economic function while dropping the proposed forced-sale and warrantless asset seizure mechanisms. Non-resident international trading firms must also be allowed to continue operating in the South African market under appropriate registration to preserve market liquidity.

Advertisement

“South Africa needs a regulatory framework that protects the integrity of the digital asset system without stifling the innovation, investment and economic growth that the digital asset sector is uniquely positioned to deliver,” Reitz said.

Continue Reading
Advertisement

Trending