Crypto scam alert: 5 things to know about the new Google Forms fraud, says Kaspersky

Kaspersky researchers have flagged a new scam campaign targeting cryptocurrency users by abusing the legitimacy of Google Forms.

Here’s what you need to know:

1. The scam starts with a fake Google Forms confirmation

Attackers are using Google Forms – a free tool typically used for surveys – to trigger automated confirmation emails. These emails appear to come from Google itself, tricking users into thinking they’ve received a legitimate crypto transaction alert.

The form usually includes only one field: the user’s email address.

3. Clicking the link takes you to a scam site

If the user clicks the link, they land on a website made to resemble a crypto transaction platform. Here, victims are asked to contact so-called “blockchain support” and make a small commission payment in cryptocurrency to receive the fake transfer. Following this process often leads to loss of funds, as the entire transaction is fabricated.

4. The attack bypasses spam filters using trusted infrastructure

Since the email is technically sent from a legitimate Google domain, it often passes through spam filters undetected. This makes the scam harder to identify. The combination of a real Google email address and familiar design elements can deceive even cautious users.

5. Stay vigilant

Andrey Kovtun, Email Threats Protection group manager at Kaspersky, warns that “the campaign demonstrates a cunning exploitation of a trusted platform.”

Kaspersky advises users to:

• Avoid clicking unexpected links

• Watch for suspicious details like unfamiliar Google Forms content

• Use reliable security tools to block fraudulent sites

If an email promises free crypto but asks for payment first, it’s likely a scam. Users should verify the source and never trust links blindly — even if the sender appears legitimate.

Read: Dubai Police arrest cybercrime gang behind fake online investment schemes