Important: Blockchain transactions are final. No one—not even Phantom—can reverse or block a confirmed transaction.
We know this is frustrating. While we can’t recover lost assets, we can help you secure your wallet and avoid further loss.
What to do right away
If you believe you were phished, scammed, or hacked, take these steps immediately:
- Secure your accounts: Change all passwords and enable two-factor authentication (2FA) on any accounts connected to your wallet.
- Report the scam: Report the fraudulent activity to relevant authorities and platforms to help prevent others from falling victim.
- Monitor your wallet: Check for unauthorized activity or transactions.
- Learn how it happened: Knowing the attack method can help you prevent another.
Common scam scenarios
"I connected to a sketchy site and my tokens are gone"
If a malicious site made transactions using your wallet:
-
Disconnect from malicious dApps:
- Go to Settings > Connected Apps.
- Select Disconnect All or specifically choose the malicious dApp to disconnect. For more information, see How to Disconnect your Wallet from dApps.
- Revoke token approvals: Revoke token approvals to prevent further unauthorized transactions. For more information, see Revoking Token Allowances / Adjusting Smart Contract Access.
Note: These steps may not fully protect you. The safest action is to create a new wallet and move your assets immediately.
Secure your assets by migrating to a new wallet
For instructions on how to migrate to a new wallet with a new secret recovery phrase, see Migrating to a New Secret Recovery Phrase / Wallet.
"I gave someone my secret recovery phrase"
If you shared your 12- or 24-word secret phrase—even once—stop using that wallet now. The scammer has full access.
Here's what to do:
- Stop using the compromised wallet.
- Create a new wallet with a new secret phrase.
- Move your assets to the new wallet immediately. Follow our wallet migration guide for help.
"I don't know how I got scammed"
Scammers use many tricks. Here are a few possibilities:
- Malware or keyloggers on your device
- Fake websites mimicking Phantom
- Fake dApps or extensions
- Seed phrase theft from insecure storage or screenshots
Learn more in our Security Center and keep your devices clean and updated.
Tips to protect yourself
- Check your connected dApps regularly and remove anything unfamiliar.
- Scan for malware using trusted software.
- Verify the app or website: Only use links from the official Phantom website at phantom.com.
- Keep your secret phrase secure: Store your recovery phrase in a secure, offline location and never share it with anyone.
Need quick help? Our AI chatbot can guide you through recovery steps. Just type "Help with scams."
Help us fight scams
We can’t reverse transactions, but you can still help others by reporting what happened. If you have links, screenshots, or transaction IDs, send them to us: How to report a scammer.