{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T15:54:09Z","timestamp":1776354849930,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":67,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,4,27]]},"DOI":"10.1145\/3803525.3804977","type":"proceedings-article","created":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T14:54:47Z","timestamp":1776351287000},"page":"1-9","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["No Wallet for Old Tricks: Introducing Context-aware Defenses Against Cryptocurrency-based Social Engineering Attacks"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-6616-546X","authenticated-orcid":false,"given":"Muhammad","family":"Muzammil","sequence":"first","affiliation":[{"name":"Stony Brook University, Stony Brook, New York, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-5896-5474","authenticated-orcid":false,"given":"Harsh","family":"Shah","sequence":"additional","affiliation":[{"name":"Stony Brook University, Stony Brook, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9366-357X","authenticated-orcid":false,"given":"Nick","family":"Nikiforakis","sequence":"additional","affiliation":[{"name":"Stony Brook University, Stony Brook, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2026,4,26]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Proceedings of the CHI Conference on Human Factors in Computing Systems.","author":"Abramova Svetlana","year":"2021","unstructured":"Svetlana Abramova, Artemij Voskobojnikov, Konstantin Beznosov, and Rainer B\u00f6hme. 2021. Bits under the mattress: Understanding different risk perceptions and security behaviors of crypto-asset users. In Proceedings of the CHI Conference on Human Factors in Computing Systems."},{"key":"e_1_3_2_1_2_1","volume-title":"IEEE Symposium on Security and Privacy.","author":"Acharya Bhupendra","year":"2024","unstructured":"Bhupendra Acharya, Muhammad Saad, Antonio Emanuele Cin\u00e0, Lea Sch\u00f6nherr, Hoang Dai Nguyen, Adam Oest, Phani Vadrevu, and Thorsten Holz. 2024. Conning the crypto conman: End-to-end analysis of cryptocurrency-based technical support scams. In IEEE Symposium on Security and Privacy."},{"key":"e_1_3_2_1_3_1","volume-title":"Proceedings of the Network and Distributed System Security Symposium. Internet Society.","author":"Agten Pieter","year":"2015","unstructured":"Pieter Agten, Wouter Joosen, Frank Piessens, and Nick Nikiforakis. 2015. Seven months' worth of mistakes: A longitudinal study of typosquatting abuse. In Proceedings of the Network and Distributed System Security Symposium. Internet Society."},{"key":"e_1_3_2_1_4_1","unstructured":"Android. 2025. Access from internal storage. https:\/\/developer.android.com\/training\/data-storage\/app-specific"},{"key":"e_1_3_2_1_5_1","unstructured":"U.K. National Protective Security Authority. 2025. Social Engineering. https:\/\/www.npsa.gov.uk\/security-campaigns\/social-engineering-0"},{"key":"e_1_3_2_1_6_1","volume-title":"Cyber-fraud is one typo away","author":"Banerjee Anirban","unstructured":"Anirban Banerjee, Dhiman Barman, Michalis Faloutsos, and Laxmi N Bhuyan. 2008. Cyber-fraud is one typo away. In IEEE INFOCOM."},{"key":"e_1_3_2_1_7_1","volume-title":"Dissecting Ponzi schemes on Ethereum: identification, analysis, and impact. Future Generation Computer Systems","author":"Bartoletti Massimo","year":"2020","unstructured":"Massimo Bartoletti, Salvatore Carta, Tiziana Cimoli, and Roberto Saia. 2020. Dissecting Ponzi schemes on Ethereum: identification, analysis, and impact. Future Generation Computer Systems (2020)."},{"key":"e_1_3_2_1_8_1","unstructured":"Chainalysis. 2025. Anatomy of an Address Poisoning Scam. https:\/\/www.chainalysis.com\/blog\/address-poisoning-scam\/"},{"key":"e_1_3_2_1_9_1","unstructured":"Coinmetro. 2025. What Are Address Poisoning Attacks?: How to protect yourself from address poisoning attacks. https:\/\/www.coinmetro.com\/learning-lab\/address-poisoning-attacks"},{"key":"e_1_3_2_1_10_1","unstructured":"European Union Council. 2025. Cybersecurity: social engineering. https:\/\/www.consilium.europa.eu\/en\/policies\/cybersecurity-social-engineering\/"},{"key":"e_1_3_2_1_11_1","unstructured":"Mr. Creatonics. 2025. The Top 12 Best Ethereum Wallets (2025 Edition). https:\/\/coinsutra.com\/best-etherum-wallets\/"},{"key":"e_1_3_2_1_12_1","unstructured":"Cube. 2025. Wallet security. https:\/\/www.cube.exchange\/what-is\/allowlistblocklist"},{"key":"e_1_3_2_1_13_1","unstructured":"CyLab. 2025. Toxin Tagger (T-T): Real-time Detection System for Blockchain Address Poisoning. https:\/\/cryptotrade.cylab.cmu.edu\/poisoning\/ethereum"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/363958.363994"},{"key":"e_1_3_2_1_15_1","unstructured":"Alexis Deviney. 2025. The quest for the one true name across DNS and ENS. (2025)."},{"key":"e_1_3_2_1_16_1","volume-title":"Proceedings of the CHI Conference on Human Factors in Computing Systems.","author":"Eleshin Farida","year":"2025","unstructured":"Farida Eleshin, Qi Sun, Mengzhe Ye, Sauvik Das, and Jason I Hong. 2025. Of Secrets and Seedphrases: Conceptual Misunderstandings and Security Challenges for Seed Phrase Management among Cryptocurrency Users. In Proceedings of the CHI Conference on Human Factors in Computing Systems."},{"key":"e_1_3_2_1_17_1","unstructured":"ENS. 2025. ENS. https:\/\/ens.domains\/"},{"key":"e_1_3_2_1_18_1","unstructured":"ENS. 2025. How to Register a .eth name. https:\/\/support.ens.domains\/en\/articles\/7882582-how-to-register-a-eth-name"},{"key":"e_1_3_2_1_19_1","unstructured":"ENS. 2025. Name lifecycle. https:\/\/support.ens.domains\/en\/articles\/8046877-name-lifecycle"},{"key":"e_1_3_2_1_20_1","unstructured":"Ethereum.org. 2025. Introduction to smart contracts. https:\/\/ethereum.org\/developers\/docs\/smart-contracts\/"},{"key":"e_1_3_2_1_21_1","unstructured":"Internet Crime Complaint Center (IC3) Federal Bureau of Investigation. 2025. 2024 Internet Crime Report. https:\/\/www.ic3.gov\/AnnualReport\/Reports\/2024_IC3Report.pdf"},{"key":"e_1_3_2_1_22_1","volume-title":"Proceedings of the ACM designing interactive systems conference.","author":"Fr\u00f6hlich Michael","year":"2021","unstructured":"Michael Fr\u00f6hlich, Maurizio Raphael Wagenhaus, Albrecht Schmidt, and Florian Alt. 2021. Don't stop me now! exploring challenges of first-time cryptocurrency users. In Proceedings of the ACM designing interactive systems conference."},{"key":"e_1_3_2_1_23_1","unstructured":"Google. 2025. Making the world's information safely accessible. https:\/\/safebrowsing.google.com\/"},{"key":"e_1_3_2_1_24_1","volume-title":"ACM SIGSAC Conference on Computer and Communications Security.","author":"Guan Shixuan","year":"2024","unstructured":"Shixuan Guan and Kai Li. 2024. Characterizing Ethereum address poisoning attack. In ACM SIGSAC Conference on Computer and Communications Security."},{"key":"e_1_3_2_1_25_1","volume-title":"Ethereum Crypto Wallets under Address Poisoning: How Usable and Secure Are They? arXiv preprint arXiv:2508.12107","author":"Guan Shixuan","year":"2025","unstructured":"Shixuan Guan and Kai Li. 2025. Ethereum Crypto Wallets under Address Poisoning: How Usable and Secure Are They? arXiv preprint arXiv:2508.12107 (2025)."},{"key":"e_1_3_2_1_26_1","unstructured":"Yongqi Guan Yaman Yu Tanusree Sharma Kaihua Qin Yang Wang and Ye Wang. 2023. Examining User Perceptions of Stablecoins: Understandings and Risks. In Posters at the Symposium on Usable Privacy and Security (SOUPS)."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2068816.2068842"},{"key":"e_1_3_2_1_28_1","unstructured":"hsts [n. d.]. HSTS Preload List Submission. https:\/\/hstspreload.org\/"},{"key":"e_1_3_2_1_29_1","volume-title":"Proceedings of the ACM on Web Conference.","author":"Huang Jianwei","year":"2025","unstructured":"Jianwei Huang, Sridatta Raghavendra Chintapalli, Mengxiao Wang, and Guofei Gu. 2025. Beyond Visual Confusion: Understanding How Inconsistencies in ENS Normalization Facilitate Homoglyph Attacks. In Proceedings of the ACM on Web Conference."},{"key":"e_1_3_2_1_30_1","volume-title":"Proceedings of the ACM Web Conference","author":"Ito Daiki","year":"2024","unstructured":"Daiki Ito, Yuta Takata, Hiroshi Kumagai, and Masaki Kamizono. 2024. Investigations of top-level domain name collisions in blockchain naming services. In Proceedings of the ACM Web Conference 2024."},{"key":"e_1_3_2_1_31_1","volume-title":"Yeap Jasmine AL, and Goh Tok Hao.","author":"Keat Ooi Say","year":"2021","unstructured":"Ooi Say Keat, Ooi Chai Aun, Yeap Jasmine AL, and Goh Tok Hao. 2021. Embracing Bitcoin: users' perceived security and trust. Quality and Quantity (2021)."},{"key":"e_1_3_2_1_32_1","unstructured":"Vincent Kobel. 2025. Generating a usable Ethereum wallet and its corresponding keys. https:\/\/kobl.one\/blog\/create-full-ethereum-keypair-and-address\/"},{"key":"e_1_3_2_1_33_1","volume-title":"International conference on financial cryptography and data security. Springer.","author":"Krombholz Katharina","year":"2016","unstructured":"Katharina Krombholz, Aljosha Judmayer, Matthias Gusenbauer, and Edgar Weippl. 2016. The other side of the coin: User experiences with bitcoin security and privacy. In International conference on financial cryptography and data security. Springer."},{"key":"e_1_3_2_1_34_1","volume-title":"USENIX Security Symposium.","author":"Lauinger Tobias","year":"2017","unstructured":"Tobias Lauinger, Abdelberi Chaabane, Ahmet Salih Buyukkayhan, Kaan Onarlioglu, and William Robertson. 2017. Game of registrars: An empirical analysis of {Post-Expiration} domain name takeovers. In USENIX Security Symposium."},{"key":"e_1_3_2_1_35_1","volume-title":"Proceedings of the Internet Measurement Conference.","author":"Lauinger Tobias","year":"2016","unstructured":"Tobias Lauinger, Kaan Onarlioglu, Abdelberi Chaabane, William Robertson, and Engin Kirda. 2016. WHOIS Lost in Translation: (Mis) Understanding Domain Name Expiration and Re-Registration. In Proceedings of the Internet Measurement Conference."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.47"},{"key":"e_1_3_2_1_37_1","volume-title":"IEEE International Conference on Blockchain.","author":"Li Kai","year":"2023","unstructured":"Kai Li, Darren Lee, and Shixuan Guan. 2023. Understanding the cryptocurrency free giveaway scam disseminated on twitter lists. In IEEE International Conference on Blockchain."},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2023.24584"},{"key":"e_1_3_2_1_39_1","volume-title":"Proceedings of the ACM on Internet Measurement Conference.","author":"Liu Enze","year":"2024","unstructured":"Enze Liu, George Kappos, Eric Mugnier, Luca Invernizzi, Stefan Savage, David Tao, Kurt Thomas, Geoffrey M Voelker, and Sarah Meiklejohn. 2024. Give and take: An end-to-end investigation of giveaway scam conversion rates. In Proceedings of the ACM on Internet Measurement Conference."},{"key":"e_1_3_2_1_40_1","unstructured":"MetaMask. 2025. MetaMask. https:\/\/metamask.io\/"},{"key":"e_1_3_2_1_41_1","unstructured":"MetaMask. 2025. MetaMask and ChainPatrol protect users with phishing warnings. https:\/\/metamask.io\/news\/metamask-chainpatrol-protect-users-with-phishing-warnings"},{"key":"e_1_3_2_1_42_1","unstructured":"MetaMask. 2025. MetaMask Security Alerts by Blockaid: the new normal for a safer transaction experience. https:\/\/metamask.io\/news\/metamask-security-alerts-by-blockaid-the-new-normal-for-a-safer-transaction [43] MetaMask. 2025. Product Spotlight: Privacy Preserving Features in MetaMask. https:\/\/metamask.io\/news\/product-spotlight-privacy-preserving-features-in-metamask"},{"key":"e_1_3_2_1_43_1","volume-title":"Proceedings of the Web Conference.","author":"Miramirkhani Najmeh","year":"2018","unstructured":"Najmeh Miramirkhani, Timothy Barron, Michael Ferdman, and Nick Nikiforakis. 2018. Panning for gold.com: Understanding the dynamics of domain dropcatching. In Proceedings of the Web Conference."},{"key":"e_1_3_2_1_44_1","volume-title":"International Conference on Financial Cryptography and Data Security. Springer.","author":"Moore Tyler","year":"2010","unstructured":"Tyler Moore and Benjamin Edelman. 2010. Measuring the perpetrators and funders of typosquatting. In International Conference on Financial Cryptography and Data Security. Springer."},{"key":"e_1_3_2_1_45_1","volume-title":"Echoes of the Past:Detecting and Classifying Re-registered Domains in Enterprise DNS Traffic. In Workshop on Measurements, Attacks, and Defenses for the Web (MADWeb).","author":"Muzammil Muhammad","year":"2026","unstructured":"Muhammad Muzammil, Zafir Ansari, Nick Nikiforakis, and Darin Johnson. 2026. Echoes of the Past:Detecting and Classifying Re-registered Domains in Enterprise DNS Traffic. In Workshop on Measurements, Attacks, and Defenses for the Web (MADWeb)."},{"key":"e_1_3_2_1_46_1","volume-title":"Proceedings of the ACM on Web Conference.","author":"Muzammil Muhammad","year":"2025","unstructured":"Muhammad Muzammil, Abisheka Pitumpe, Xigao Li, Amir Rahmati, and Nick Nikiforakis. 2025. The poorest man in babylon: A longitudinal study of cryptocurrency investment scams. In Proceedings of the ACM on Web Conference."},{"key":"e_1_3_2_1_47_1","unstructured":"Muhammad Muzammil Harsh Shah and Nick Nikiforakis. 2026. No Wallet for Old Tricks. https:\/\/pragseclab.github.io\/no-wallet-for-old-tricks\/"},{"key":"e_1_3_2_1_48_1","volume-title":"Proceedings of the ACM on Internet Measurement Conference.","author":"Muzammil Muhammad","year":"2024","unstructured":"Muhammad Muzammil, Zhengyu Wu, Aruna Balasubramanian, and Nick Nikiforakis. 2024. Panning for gold. eth: Understanding and Analyzing ENS Domain Dropcatching. In Proceedings of the ACM on Internet Measurement Conference."},{"key":"e_1_3_2_1_49_1","volume-title":"APWG Symposium on Electronic Crime Research (eCrime). IEEE.","author":"Muzammil Muhammad","year":"2024","unstructured":"Muhammad Muzammil, Zhengyu Wu, Lalith Harisha, Brian Kondracki, and Nick Nikiforakis. 2024. Typosquatting 3.0: Characterizing squatting in blockchain naming systems. In APWG Symposium on Electronic Crime Research (eCrime). IEEE."},{"key":"e_1_3_2_1_50_1","unstructured":"Palo Alto Networks. 2025. What Are Malicious Newly Registered Domains? https:\/\/docs.netskope.com\/en\/rbi-category-definitions"},{"key":"e_1_3_2_1_51_1","unstructured":"Palo Alto Networks. 2025. What Are Malicious Newly Registered Domains? https:\/\/www.paloaltonetworks.com\/cyberpedia\/what-are-malicious-newly-registered-domains"},{"key":"e_1_3_2_1_52_1","unstructured":"U.S. Department of State. 2025. Understanding the Dangers of Social Engineering. https:\/\/www.state.gov\/understanding-the-dangers-of-social-engineering"},{"key":"e_1_3_2_1_53_1","volume-title":"Newtwork and Distributed System Security Symposium (NDSS) ([n. d.]).","author":"Paudel Pujan","unstructured":"Pujan Paudel and Gianluca Stringhini. [n. d.]. LOKI: Proactively Discovering Online Scam Websites by Mining Toxic Search Queries. Newtwork and Distributed System Security Symposium (NDSS) ([n. d.])."},{"key":"e_1_3_2_1_54_1","unstructured":"Protos. 2025. Refund of $70M address poisoning scam ongoing over 50% returned. https:\/\/protos.com\/refund-of-70m-address-poisoning-scam-ongoing-over-50-returned\/"},{"key":"e_1_3_2_1_55_1","unstructured":"Michael Sikorski. 2025. Social Engineering on the Rise \u2014 New Unit 42 Report. https:\/\/www.paloaltonetworks.com\/blog\/2025\/07\/social-engineering-rise-new-unit-42-report\/"},{"key":"e_1_3_2_1_56_1","volume-title":"IEEE European symposium on security and privacy workshops (EuroS&PW). IEEE.","author":"Siu Gilberto Atondo","year":"2023","unstructured":"Gilberto Atondo Siu and Alice Hutchings. 2023. \u201cGet a higher return on your savings!\u201d: Comparing adverts for cryptocurrency investment scams across platforms. In IEEE European symposium on security and privacy workshops (EuroS&PW). IEEE."},{"key":"e_1_3_2_1_57_1","volume-title":"Bitcointalk. In APWG symposium on electronic crime research (eCrime). IEEE.","author":"Siu Gilberto Atondo","year":"2022","unstructured":"Gilberto Atondo Siu, Alice Hutchings, Marie Vasek, and Tyler Moore. 2022. \u201cInvest in crypto!\u201d: An analysis of investment scam advertisements found in Bitcointalk. In APWG symposium on electronic crime research (eCrime). IEEE."},{"key":"e_1_3_2_1_58_1","volume-title":"IEEE Symposium on Security and Privacy (SP).","author":"So Johnny","year":"2022","unstructured":"Johnny So, Najmeh Miramirkhani, Michael Ferdman, and Nick Nikiforakis. 2022. Domains do change their spots: Quantifying potential abuse of residual trust. In IEEE Symposium on Security and Privacy (SP)."},{"key":"e_1_3_2_1_59_1","unstructured":"Johnny So Iskander Sanchez-Rola and Nick Nikiforakis. 2025. Lost in the Mists of Time: Expirations in DNS Footprints of Mobile Apps. (2025)."},{"key":"e_1_3_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.1145\/3132465.3132467"},{"key":"e_1_3_2_1_61_1","unstructured":"Chris Stokel-Walker. 2025. Scammers are making thousands of dollars through blockchain typosquatting. https:\/\/www.fastcompany.com\/91228285\/scammers-are-making-thousands-of-dollars-through-blockchain-typosquatting"},{"key":"e_1_3_2_1_62_1","volume-title":"USENIX Security Symposium.","author":"Szurdi Janos","year":"2014","unstructured":"Janos Szurdi, Balazs Kocso, Gabor Cseh, Jonathan Spring, Mark Felegyhazi, and Chris Kanich. 2014. The long {\u201cTaile\u201d} of typosquatting domain names. In USENIX Security Symposium."},{"key":"e_1_3_2_1_63_1","volume-title":"Blockchain Address Poisoning. In USENIX Security Symposium.","author":"Tsuchiya Taro","year":"2025","unstructured":"Taro Tsuchiya, Jin-Dong Dong, Kyle Soska, and Nicolas Christin. 2025. Blockchain Address Poisoning. In USENIX Security Symposium."},{"key":"e_1_3_2_1_64_1","volume-title":"Strider Typo-Patrol: Discovery and Analysis of Systematic Typo-Squatting. SRUTI","author":"Wang Yi-Min","year":"2006","unstructured":"Yi-Min Wang, Doug Beck, Jeffrey Wang, Chad Verbowski, and Brad Daniels. 2006. Strider Typo-Patrol: Discovery and Analysis of Systematic Typo-Squatting. SRUTI (2006)."},{"key":"e_1_3_2_1_65_1","volume-title":"International Conference on Human-Computer Interaction. Springer.","author":"Weber Kristin","year":"2020","unstructured":"Kristin Weber, Andreas E Sch\u00fctz, Tobias Fertig, and Nicholas H M\u00fcller. 2020. Exploiting the human factor: Social engineering attacks on cryptocurrency users. In International Conference on Human-Computer Interaction. Springer."},{"key":"e_1_3_2_1_66_1","volume-title":"ACM Internet Measurement Conference.","author":"Xia Pengcheng","year":"2022","unstructured":"Pengcheng Xia, Haoyu Wang, Zhou Yu, Xinyu Liu, Xiapu Luo, Guoai Xu, and Gareth Tyson. 2022. Challenges in decentralized name management: the case of ENS. In ACM Internet Measurement Conference."},{"key":"e_1_3_2_1_67_1","volume-title":"Proceedings of the ACM Web Conference.","author":"Ye Guoyi","year":"2024","unstructured":"Guoyi Ye, Geng Hong, Yuan Zhang, and Min Yang. 2024. Interface Illusions: Uncovering the Rise of Visual Scams in Cryptocurrency Wallets. In Proceedings of the ACM Web Conference."}],"event":{"name":"EuroSys '26: 21st European Conference on Computer Systems","location":"Edinburgh Scotland Uk","acronym":"EuroSec '26","sponsor":["SIGOPS ACM Special Interest Group on Operating Systems"]},"container-title":["Proceedings of the 19th European Workshop on Systems Security"],"original-title":[],"deposited":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T14:56:20Z","timestamp":1776351380000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3803525.3804977"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,4,26]]},"references-count":67,"alternative-id":["10.1145\/3803525.3804977","10.1145\/3803525"],"URL":"https:\/\/doi.org\/10.1145\/3803525.3804977","relation":{},"subject":[],"published":{"date-parts":[[2026,4,26]]},"assertion":[{"value":"2026-04-26","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}