How the scam operates.
eos-io.info dibangun untuk membangkitkan kesan ekosistem blockchain EOS yang telah mapan, dengan menyasar pengguna yang sudah mengenal jaringan EOS dan mungkin sedang mencari perkakas resmi, akses wallet, antarmuka staking, atau layanan terkait token. Struktur domain ini, yang mengganti tanda titik dengan tanda hubung pada identitas merek kanonik dan menambahkan domain tingkat atas generik .info, merupakan permainan kedekatan yang disengaja, dirancang untuk muncul dalam pencarian atau agar tampak masuk akal ketika dibagikan di kanal media sosial.
Mekanisme operasionalnya mengikuti pola yang umum pada operasi peniruan merek di ruang kripto. Pengunjung biasanya disuguhi antarmuka yang meniru bahasa visual proyek asli secara cukup mirip sehingga menekan kecurigaan langsung. Tujuan operator umumnya adalah penyedotan private key, seed phrase, atau kredensial platform, yang dimintakan dengan dalih koneksi wallet, verifikasi akun, atau proses airdrop maupun klaim token. Setelah kredensial dikirimkan, operator memperoleh kendali sepihak atas aset on-chain mana pun yang terkait.
Titik kegagalan bagi korban biasanya tidak terlihat hingga aset telah berpindah. Karena transaksi blockchain dirancang bersifat tidak dapat dibatalkan, tidak ada mekanisme sengketa atau chargeback setelah dana ditransfer atau key terkompromikan. Korban umumnya baru menyadari penipuan ini setelah berupaya menarik dana yang sudah tidak ada lagi, atau setelah memperhatikan bahwa wallet yang ditautkan selama sesi telah dikuras. Upaya pemulihan pada tahap tersebut sangat terbatas akibat sifat pseudonim dari alamat penerima.
Red flags we documented.
- 01Domain engineered to mirror a recognised blockchain brandThe structure eos-io.info replicates the visual and phonetic identity of a well-known blockchain network by transposing its canonical domain format. This is a textbook brand-proximity construction, intended to exploit navigational error and user trust rather than establish independent legitimacy.
- 02Generic TLD inconsistent with infrastructure claimsLegitimate blockchain infrastructure projects, wallets, node operators, foundation portals, consistently operate under country-code or purpose-specific top-level domains, not unmoderated generic registrations such as .info. The choice of .info is a recurring characteristic of disposable impersonation domains with short operational lifespans.
- 03No documented regulatory standing or organisational identityNo incorporated entity, regulatory filing, or named technical team is documented in connection with this domain. Legitimate platforms operating in the digital-asset space, particularly those handling wallet access or token custody, maintain verifiable organisational presence. The absence of any such record is a material signal.
- 04Confirmed listing on CryptoScamDB blacklistThe domain appears in the CryptoScamDB community blacklist, a collaboratively maintained reference used by wallet software, browser extensions, and investigative researchers to flag addresses with a documented pattern of fraudulent activity. Blacklist inclusion reflects reported harm, not merely suspicion.
- 05Impersonation pattern associated with credential-harvesting operationsDomains that mimic blockchain project identities are disproportionately associated with private-key and seed-phrase harvesting rather than financial-return fraud. This distinction matters for victims: the harm is typically total and immediate, as the operator gains permanent access to on-chain holdings the moment credentials are submitted.
What you can do now.
Open a free 24-hour case assessment with CryptoLeek +
Tell us what happened. A senior analyst reads your file within 24 hours and replies with an honest yes/no/conditional on recovery. The assessment is free. If we cannot recover the funds we say so plainly, including which (free) regulator channel you should use instead. If we accept the case, we open a numbered case file and issue a written quote for a flat investigation retainer before any work begins, scoped to case complexity, the jurisdictions involved, and the on-chain trail.
Trace your funds on-chain with our analysts +
We trace stolen crypto across BTC, ETH, EVM L2s, Solana, Tron, and major stablecoins using the same toolchain as regulators and tier-1 exchange compliance teams. The output is a forensic report anchored to specific transaction hashes and block heights, the evidence that exchanges, payment processors, and counsel actually act on. Recovery starts here.
Recover with counsel where civil action makes sense +
Where the trace lands in a jurisdiction with cooperative banks and courts, we coordinate with bar-licensed counsel in our 40+ jurisdiction network for civil action and asset-freezing orders (Mareva-style). Counsel bill you directly; the CryptoLeek investigation retainer is independent of counsel fees. The outcome is funds released back to your nominated wallet or bank account.