Wallet users are used to copying the receiving address from the transaction records when they transfer tokens. Scammers take advantage of the common practice among users to copy receiving addresses from transaction records. They exploit this habit by generating phishing addresses that closely resemble the addresses users frequently transfer. Typically, these phishing addresses share the same last four to six digits.
For example:
Receiving address frequently used by users:
TeDC1B...EC4aZsG
Generated phishing address:
TBUxfPB...HK14aZsG
Scammers employ the generated phishing address, such as TBUxfPB...HK14aZsG, to send a small amount (e.g., 0.001 USDT) to the user's address, disguised as an airdrop. This transaction will appear in the transaction record list. If users fail to thoroughly inspect the difference for consistency, they may inadvertently copy the phishing address for payment transfers, resulting in asset loss.
Users are reminded here that once a transaction on the chain is sent out, it cannot be revoked. Please check and confirm the receiving address carefully before transferring.