Crypto.com has launched a security tool to address the growing threat of impersonation scams, where callers pose as company support staff. On Jan. 7, 2026, the platform introduced the “Live In-App Call Warning” feature to alert users during suspicious phone calls.
According to a Crypto.com product update, this tool aims to stop users from sharing sensitive data or transferring funds to criminals.
This development is significant for U.S. consumers because impersonation scams often bypass technical defenses like strong passwords or two-factor authentication (2FA). These attacks target the human element through manipulation and pressure.
If a criminal successfully convinces a user to share a code or move money, traditional software protections may not react in time to prevent the loss.
Key Takeaways
- Crypto.com’s new “Live In-App Call Warning” helps users identify impersonation attempts while a call is in progress.
- The tool specifically targets vishing (voice phishing), where scammers use spoofed caller IDs and high-pressure tactics.
- Because cryptocurrency transactions are often irreversible, real-time prevention is more effective than post-fraud monitoring.
- While the alert adds a layer of safety, users must still maintain basic habits like never sharing seed phrases or private keys.
- Real-time verification is becoming a standard feature across many major fintech and digital banking platforms.
What did Crypto.com announce, and who is it for?
Crypto.com designed its new feature to help customers verify the legitimacy of a call in real-time. The primary goal is to reduce financial losses caused by scammers posing as security or customer support teams.
This fraud-prevention tool is integrated directly into the Crypto.com mobile app. It is available for retail crypto investors and any users who manage digital assets through the platform.
Fintech apps are frequent targets for these scams because account balances can be high and transactions happen quickly. A convincing phone call is often enough to trick someone into revealing information that should always remain private.
Why are impersonation scams so hard to stop with traditional security tools?
What’s the weakness scammers exploit?
Impersonation scams rely on social engineering rather than technical hacking. Instead of trying to break encryption, the scammer manipulates the user by creating panic or a false sense of urgency.
That is why controls like biometrics and passcodes can fail. If a victim is pressured into reading a one-time password (OTP) out loud, the technical security of the app is bypassed.
Crypto.com’s examples of real-life phishing attempts show how these tactics can appear realistic enough to deceive even careful users.
How does a real-time in-app warning work during a suspicious call?
What should you do if you get a call claiming to be Crypto.com?
The workflow for the new feature is straightforward. If you receive a suspicious call, you should open the Crypto.com app and look for a warning banner at the top of the screen.
If the banner indicates that Crypto.com is not currently calling you, you should treat the call as a scam and hang up immediately. This gives users a chance to verify the interaction while it is happening.
By providing a real-time confirmation signal, the app removes the need to rely solely on a phone's caller ID, which can be easily faked.
Why are digital banks and fintech apps focusing on phone fraud now?
Isn’t phishing mostly email and texts?
Email and SMS phishing remain common, but voice-based fraud (vishing) is growing because it feels more personal and urgent. Scammers use caller ID spoofing to make it appear as though they are calling from a trusted online bank or a well-known crypto exchange.
In the crypto sector, the stakes are particularly high. Once a blockchain transaction is authorized, it is usually irreversible.
This lack of a chargeback process makes prevention critical, as there is often no way to recover funds once they are sent.
How does Crypto.com’s approach compare with other fintech security moves?
Is Crypto.com alone in using in-app verification?
Crypto.com is not alone, as this type of real-time verification is becoming a broader fintech trend. For example, Revolut recently introduced a call identification feature that surfaces warnings inside its app.
According to Revolut’s announcement about its call identification feature, the goal is to provide a “trust signal” in the app. This shift suggests that fintech companies no longer believe traditional phone networks are secure enough for sensitive communications.
What are the limits of automated scam detection?
Can a warning banner prevent every scam?
No single tool can stop every fraudulent attempt. While real-time warnings are helpful, scammers constantly adapt by switching to social media messages, encrypted chat apps, or emails.
Crypto.com positions this call warning as just one part of a layered security strategy. This strategy includes device binding, anti-phishing codes, and withdrawal locks.
Ultimately, the user’s reaction still matters most. They must choose to pause and verify the request before taking action.
What should you do if you suspect a scam call right now?
What are the safest “next steps” in the moment?
If a caller pressures you to act immediately, you should treat that as a major red flag. The safest response is to end the call and contact the company through an official channel, such as the support chat.
In addition, keep these safety rules in mind. Never share your seed phrase or private keys with anyone, including people claiming to be “support.”
Avoid clicking links sent during a phone call or via a follow-up text message. Use official verification tools like Crypto.com Verify to check if a message is legitimate.
What trends are pushing fintech toward stronger identity checks next?
Are we heading toward biometric-first banking security?
The fintech industry is moving toward protections that are harder to spoof than a phone number, such as passkeys and behavioral analytics. At the same time, social engineering is evolving with AI-assisted scripts and sophisticated deception.
From a consumer perspective, security is becoming a more interactive process. The “secure choice” now happens during a live interaction rather than after a fraud alert arrives.
The Bottom Line
Crypto.com’s Live In-App Call Warning addresses scammers who use manipulation rather than technical exploits to access accounts. These real-time alerts help users identify fraud as it happens.
They are most effective when combined with cautious security habits. Ultimately, verifying requests through official channels remains the most reliable defense in the digital asset space.
