Account Security

Best Practices

Authorized communication will only come from verified accounts on our official channels.

How to protect yourself:

  • Bookmark to avoid using search engines to navigate to our site.

  • Check the address of the website you’re visiting to ensure it is the actual site. Ask yourself if the name of the business is spelled correctly.

  • Ensure the website’s URL begins with “https“.

  • Look for the closed lock icon 🔒 in the address bar.

  • Never click on the link found inside an email or text.

  • Never disclose your 12- or 24-word wallet seed phrase online.

  • Bookmark legitimate websites you visit often.

  • Consider setting up an email account that you only use for Swoops.

We will never ask you for:

  • Personal information.

  • Your passwords or private key. Never give them out to anyone who asks.

  • Removal of your 2FA methods.

  • Access to your devices via remote desktop access software, such as TeamViewer or AnyDesk.


  • To contact Swoops Support, always bookmark or navigate to the website manually by typing into your browser's address bar. Never give out any information about your account unless you opened a ticket via this method.

  • If you receive a Swoops Support email from any other address besides, please do not click on any links that may be provided, as they are not legitimate and should not be trusted. Instead, please fill out this form to let us know and don't delete the email until you heard back from us.

  • Note that our marketing emails are sent via the domain and can be considered safe if you receive them in your inbox.

Social Media

  • Our social media team (e.g. Twitter and Discord) only provides general support and an option to escalate your ticket using an online form.

  • If someone claiming to work for Swoops contacts you on social media, never give them any information besides the ticket number of your issue.

Beware of Phishing Scams

While phishing scams come in many forms, the most common scenario occurs when a client uses a search engine to search the word “Swoops”, clicks on the first link they see, and unknowingly enters their sign-in credentials into a fraudulent site imitating the real Swoops website. These sites will often look almost identical to the official Swoops site, with the most telling difference being that the website address is noticeably different from the official URL, which is

Another method of phishing occurs when you receive an unsolicited email or text that asks you to click a link or sign-in to your account. This could be a scammer who is impersonating Swoops or a wallet provider. The links will lead to a website that looks almost identical to the actual wallet.

These links are malicious and will request that you enter your username and password or, in the case of a wallet, your 12- or 24-word seed phrase. Any information that you enter will be recorded, sent to the scammers, and used against you to gain access to your accounts and steal your digital assets.

It is important to be very careful and practice good habits to avoid falling victim to these scams.

To report a phishing incident, click here.

Last updated