FBI Warns of Phishing Scam Targeting 728 Tron Wallets

FBI Warns of Scam Targeting 728 Tron Wallets

The U.S. Federal Bureau of Investigation issued an official warning on March 19, 2026, alerting Tron blockchain users to a phishing scam involving a fraudulent token impersonating the agency. The scam involves airdropping a fake 'FBI token' into users' wallets. This token includes an on-chain message claiming the recipient's wallet is under investigation and must complete an anti-money laundering (AML) verification process on an external website to avoid having their assets frozen.

FBI New York encourages users of the Tron blockchain network to exercise caution if they encounter a token purported to be from the FBI. Do not provide any identifying information to any website associated with such a token.

— FBI New York

This method represents a direct on-chain phishing attack, which embeds the scam within a blockchain transaction itself, bypassing conventional email spam filters. According to on-chain data from Tronscan, the malicious token was created just eight days before the warning and has already been distributed to 728 wallets, several of which hold more than $1 million in USDT.

Attack Leverages Tron's Illicit Finance Reputation

The scam's design appears engineered to exploit the Tron network's established reputation as a conduit for illicit finance. Reports have previously linked the blockchain to sanctions evasion and terrorist financing, making the threat of an FBI investigation feel more plausible to users who may fear scrutiny. This context increases the psychological pressure on recipients to comply with the fraudulent verification request.

The warning adds to a series of reputational challenges for the network. Its founder, Justin Sun, recently reached a $10 million settlement with the U.S. Securities and Exchange Commission (SEC) to resolve a 2023 lawsuit alleging fraud and the sale of unregistered securities. While Tron has participated in initiatives to combat illicit activity, including freezing over $100 million in assets, this latest scam highlights persistent security vulnerabilities and regulatory risks facing its ecosystem.